Apache Rave : Security vulnerabilities, CVEs

CVE-2013-1814

Public exploit

The users/get program in the User RPC API in Apache Rave 0.11 through 0.20 allows remote authenticated users to obtain sensitive information about all user accounts via the offset parameter, as demonstrated by discovering password hashes in the password field of a response.

Max CVSS

4.0

EPSS Score

92.18%

Published

2013-03-14

Updated

2013-07-03

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Apache » Rave : Security Vulnerabilities, CVEs,

CVE-2013-1814