Citadel WebCit through 926 allows unauthenticated remote attackers to enumerate valid users within the platform. NOTE: this was reported to the vendor in a publicly archived Multiple Security Vulnerabilities in WebCit 926 thread.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Webcit | Citadel | * | 926 (including) |
Webcit | Ubuntu | bionic | * |
Webcit | Ubuntu | groovy | * |
Webcit | Ubuntu | trusty | * |
Webcit | Ubuntu | xenial | * |