Описание
engine/lib/users.php in Elgg before 1.8.5 does not properly specify permissions for the useradd action, which allows remote attackers to create arbitrary accounts.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| elgg | itp | package |
EPSS
Процентиль: 64%
0.00478
Низкий
Связанные уязвимости
nvd
больше 12 лет назад
engine/lib/users.php in Elgg before 1.8.5 does not properly specify permissions for the useradd action, which allows remote attackers to create arbitrary accounts.
github
больше 3 лет назад
engine/lib/users.php in Elgg before 1.8.5 does not properly specify permissions for the useradd action, which allows remote attackers to create arbitrary accounts.
EPSS
Процентиль: 64%
0.00478
Низкий