CVE-2018-25350 documents a username enumeration vulnerability in userSpice 4.3.24. The issue resides in the existingUsernameCheck.php endpoint, which allows unauthenticated attackers to determine valid usernames by submitting POST requests and analyzing response content for the string 'taken'. This information disclosure weakness enables systematic account discovery without authentication credentials. The [truncated]
CVE-2018-25349 is a cross-site scripting (XSS) vulnerability in userSpice 4.3.24 that allows attackers to inject malicious scripts through the X-Forwarded-For HTTP header. The vulnerability exists in the backup.php endpoint, where crafted requests containing XSS payloads in the X-Forwarded-For header can execute when administrators subsequently view the audit log page. This represents a stored XSS attack [truncated]
