Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenCRX before v5.2.2 was discovered to be vulnerable to password enumeration due to the difference in error messages received during a password reset which could enable an attacker to determine if a username, email or ID is valid.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
openCRX 安全漏洞
Vulnerability Description
openCRX是一款开源 Crm 软件。 openCRX v5.2.2 版本之前存在安全漏洞,该漏洞源于容易受到密码枚举的影响,因为在密码重置期间收到的错误消息不同,这可能使攻击者能够确定用户名、电子邮件或 ID 是否有效。
CVSS Information
N/A
Vulnerability Type
N/A