CVE-2023-48028 Information

Description

kodbox 1.46.01 has a security flaw that enables user enumeration. This problem is present on the login page where an attacker can identify valid users based on varying response messages potentially paving the way for a brute force attack.

Reference

https://gist.github.com/bugplorer/9ae8ad7a9f2a3053ebd07a1b7b54deae https://nitipoom-jar.github.io/CVE-2023-48028/