CVE-2022-40292
5.3MEDIUMThe application allowed for Unauthenticated User Enumeration by interacting with an unsecured endpoint to retrieve information on each account within the system.
Published: 10/31/2022Updated: 5/6/2025
Description
The application allowed for Unauthenticated User Enumeration by interacting with an unsecured endpoint to retrieve information on each account within the system.
AI AnalysisPowered by AI
Affected Products
phppointofsalephp_point_of_sale
19.0
References
- https://www.themissinglink.com.au/security-advisories/cve-2022-40292Third Party Advisory
- https://www.themissinglink.com.au/security-advisories/cve-2022-40292Third Party Advisory