CNNVD-202509-277 Information
Sep 03, 2025
cve
CNNVD ID
CNNVD-202509-277
Related CVE
- CNNVD Published: 2025-09-03
Description (Chinese)
Mautic是Mautic开源的一款开源的营销自动化软件。该软件能够监控管理网站、发送电子邮件并管理客户资源。 Mautic存在安全漏洞,该漏洞源于登录返回时间差异,可能导致用户名枚举和暴力破解攻击。
Description (English)
Mautic is an open source marketing automation software. The software is capable of monitoring and managing the website, sending e-mails and managing client resources. There is a security loophole in Mautic, which stems from differences in the timing of login and may lead to a number of user names and violent break-ups.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Mautic
Published
2025-09-03
Last Modified
2026-02-24
References
https://github.com/mautic/mautic/security/advisories/GHSA-3ggv-qwcp-j6xg
Patch
https://github.com/mautic/mautic/releases
Share on: