cvedb.io
CVE-2021-34683
MEDIUM · CVSS 5.3
EPSS exploitation probability: 0%
Published 2021-06-16T12:15:12.793 · Last modified 2026-06-17T03:56:21.007

Summary

An issue was discovered in EXCELLENT INFOTEK CORPORATION (EIC) E-document System 3.0. A remote attacker can use kw/auth/bbs/asp/get_user_email_info_bbs.asp to obtain the contact information (name and e-mail address) of everyone in the entire organization. This information can allow remote attackers to perform social engineering or brute force attacks against the system login page.

Affected products

eic — e-document_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when eic ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.