CVE-2014-1931
Visibility Software Cyber Recruiter <8.1.00 - Info Disclosure
Title source: llmDescription
The user login page in Visibility Software Cyber Recruiter before 8.1.00 generates different responses for invalid password-retrieval attempts depending on which data elements are incorrect, which might allow remote attackers to obtain account-related information via a series of requests.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/65564
Vendor Advisory x_refsource_confirm
http://www.vspublic.com/help/Cyber%20Recruiter/default.aspx?pageid=release_details
Scores
EPSS
0.0107
EPSS Percentile
60.7%
Details
CWE
CWE-200
Status
published
Products (7)
visibility_software/cyber_recruiter
6.2
visibility_software/cyber_recruiter
6.4
visibility_software/cyber_recruiter
6.6
visibility_software/cyber_recruiter
6.8
visibility_software/cyber_recruiter
7.0
visibility_software/cyber_recruiter
7.2
visibility_software/cyber_recruiter
< 8.0
Published
Feb 10, 2014
Tracked Since
Feb 18, 2026