Vulnerabilities > CVE-2023-40756 - Information Exposure Through Discrepancy vulnerability in PHPjabbers Callback Widget 1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
User enumeration is found in PHPJabbers Callback Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |