LOW 3.7 NuGet
Umbraco possible user enumeration
GHSA-552f-97wf-pmpq · CVE-2024-28868
Published · Modified
Description
Impact
A user enumeration attack is possible.
Affected versions
Umbraco 10 with access to the native login screen
Patches
This is fixed in 10.8.5
Workarounds
Disabling the native login screen, by exclusively use external logins.
Ready to move
Start Securing
Free, no credit card | First findings in minutes