CVE-2022-40292 Information

Description

The application allowed for Unauthenticated User Enumeration by interacting with an unsecured endpoint to retrieve information on each account within the system.

Reference

https://www.themissinglink.com.au/security-advisories/cve-2022-40292