Emre Aktaş

**Name of the Vulnerable Software and Affected Versions** CBK Soft enVision versions prior to 250566 **Description** The software contains a flaw that allows Account Footprinting, potentially leading to the exposure of sensitive and private personal information to unauthorized actors. The issue involves an observable discrepancy that enables user enumeration. **Recommendations** Update to version 250566 or later.

**Name of the Vulnerable Software and Affected Versions** DivvyDrive Web versions 4.8.2.2 through 4.8.2.15 **Description** An issue exists in DivvyDrive Web that allows for Cross-Domain Search Timing. This is due to an Observable Timing Discrepancy. **Recommendations** Update to a version later than 4.8.2.15.