Details of CVE-2021-34683
Description
A remote attacker can obtain the contact information (name, email) of the entire organization. This information can allow remote attackers to perform social engineering or brute force attacks on system login page. This vulnerability affects many organizations.
Affected file
https://[Target Domain]/kw/auth/bbs/asp/get_user_email_info_bbs.asp