VYPR
Unrated severityNVD Advisory· Published Sep 17, 2019· Updated Aug 5, 2024

CVE-2019-16394

CVE-2019-16394

Description

SPIP before 3.1.11 and 3.2 before 3.2.5 provides different error messages from the password-reminder page depending on whether an e-mail address exists, which might help attackers to enumerate subscribers.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • SPIP/SPIPdescription
  • Spip/Spipllm-fuzzy
    Range: <3.1.11, <3.2.5

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.