CVE-2013-6968

Cisco WebEx Training Center - Unauthenticated User Enumeration via Registration Error Messages

Title source: llm
STIX 2.1

Description

Cisco WebEx Training Center provides different error messages for registration attempts depending on whether the e-mail address exists, which allows remote attackers to enumerate attendees via a series of requests, aka Bug ID CSCul36003.

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1029492
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/100913
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/89688

Scores

EPSS 0.0246
EPSS Percentile 82.5%

Details

CWE
CWE-200
Status published
Products (1)
cisco/webex_training_center
Published Dec 14, 2013
Tracked Since Feb 18, 2026