Name of the Vulnerable Software and Affected Versions Управление региональной программой капитального ремонта (affected versions not specified)

Description The issue is related to weaknesses in the authorization mechanism of the platform. It can be exploited by a remote attacker using specially crafted POST requests to guess user account names.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.