Back to search
CVE-2021-47717
Published: Dec 9, 2025
Modified: Apr 7, 2026
PUBLISHED
Description
IntelliChoice eFORCE Software Suite 2.5.9 contains a username enumeration vulnerability that allows attackers to enumerate valid users by exploiting the 'ctl00$MainContent$UserName' POST parameter. Attackers can send requests with valid usernames to retrieve user information.
| Vendor | Product | Versions |
|---|---|---|
IntelliChoice | IntelliChoice eFORCE Software Suite | affected 2.5.9.6 |
Weaknesses (CWE)
References
ExploitDB-50164
exploit
Official Product Homepage
product
Zero Science Lab Disclosure (ZSL-2021-5658)
third-party-advisory
VulnCheck Advisory: IntelliChoice eFORCE Software Suite Username Enumeration
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now