Unrated severityNVD Advisory· Published Nov 23, 2004· Updated Jun 16, 2026
CVE-2004-0294
CVE-2004-0294
Description
YaBB 1 SP 1.3.1 displays different error messages when a user exists or not, which makes it easier for remote attackers to identify valid users and conduct a brute force password guessing attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:yabbforumsoftware:yet_another_bulletin_board:1.0:sp1.3.1:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- marc.infonvdThird Party Advisory
- www.securityfocus.com/bid/9677nvdBroken LinkThird Party AdvisoryVDB EntryVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/15236nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.