Description

A User enumeration vulnerability in AquilaCMS 1.409.20 and prior allows unauthenticated attackers to obtain email addresses via the "Add a user" feature. The vulnerability occurs due to insufficiently validated user input being processed as a regular expression, which is then matched against email addresses to find duplicate entries.

INFO

Published Date :

2024-10-29T00:00:00.000Z

Last Modified :

2025-03-14T16:59:22.921Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-48572 vulnerability.

Vendors Products
Aquila
  • Cms
Aquila-cms
  • Aquilacms
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-48572.

URL Resource
https://github.com/dos-m0nk3y/CVE/tree/main/CVE-2024-48572 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact