VYPR
Low severity3.7NVD Advisory· Published Feb 3, 2021· Updated Jun 17, 2026

CVE-2020-9389

CVE-2020-9389

Description

A username enumeration issue was discovered in SquaredUp before version 4.6.0. The login functionality was implemented in a way that would enable a malicious user to guess valid username due to a different response time from invalid usernames.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.