提交 #628787: mtons https://gitee.com/mtons/mblog <=3.5.0 Usename Enumeration & Batch Account Registration信息

标题mtons https://gitee.com/mtons/mblog <=3.5.0 Usename Enumeration & Batch Account Registration
描述The /register endpoint is used for user account registration, has no CAPTCHA protection, no rate limiting, and error messages show whether the username exists, leading to the ability to brute force usernames or perform batch account registration.
来源⚠️ https://gitee.com/mtons/mblog/issues/ICPMJO
用户
 ZAST.AI (UID 87884)
提交2025-08-05 09時14分 (9 月前)
管理2025-08-13 21時22分 (9 days later)
状态已接受
VulDB条目320034 [mtons mblog 直到 3.5.0 /register 信息公开]
积分16

上一步一览下一步

Do you know our Splunk app?

Download it now for free!