CVE-2022-44022 - How PwnDoc ≤.5.3 Leaks Usernames via Timing Attacks (with Exploit Details)
PwnDoc is a popular collaborative pentest reporting platform, widely used for automating report generation and sharing. However, up to version .5.3, PwnDoc contained a
CVE-2022-44023 - How PwnDoc’s Login Leaks Disabled Usernames – Analysis & Exploit Example
PwnDoc is an open-source, customizable penetration test reporting platform written in Node.js with a Vue.js frontend. If you use PwnDoc on your infrastructure,