CVE-2025-40732

CWE-2033 documents3 sources
Severity
8.7HIGH
EPSS
0.1%
top 76.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Daily Expense Manager Daily Expense ManagerCode-projects Daily Expense Manager
Timeline
PublishedJun 30

Description

user enumeration vulnerability in Daily Expense Manager v1.0. To exploit this vulnerability a POST request must be sent using the name parameter in /check.php

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-76wp-r6xr-9rx6: user enumeration vulnerability in Daily Expense Manager v12025-06-30
CVEList
User enumeration vulnerability in Daily Expense Manager2025-06-30
CVE-2025-40732 (HIGH CVSS 8.7) | user enumeration vulnerability in D | cvebase.io