Primary

Context

userSpice Username Enumeration Vulnerability

Vulnerability

A username enumeration vulnerability exists in userSpice version 4.3.24. This vulnerability allows unauthenticated attackers to identify valid usernames by sending POST requests to the existingUsernameCheck.php endpoint. The response text can be analyzed for the 'taken' string, indicating the presence of an account associated with the submitted username.

Impact

Exploitation of this vulnerability allows for username enumeration, enabling attackers to discover valid usernames within the application.

Reproduction

To reproduce this vulnerability, send a POST request to the existingUsernameCheck.php endpoint with a username payload. Analyze the response for the 'taken' string, which indicates that the username exists in the system.

Added: May 26, 2026, 9:15 PM

Updated: May 26, 2026, 9:15 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.7

remediation

0.0

relevance

9.2

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.7

remediation

0.0

relevance

9.2

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

userSpice Username Enumeration Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

userSpice

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating