Описание
misc.php in DeluxeBB 1.3 allows remote attackers to register accounts without a valid email address via a valemail action with the valmem set to a pre-assigned user ID, which is visible from a memberlist action.
Ссылки
- Exploit
- Exploit
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:deluxebb:deluxebb:1.3:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00833
Низкий
4 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
почти 4 года назад
misc.php in DeluxeBB 1.3 allows remote attackers to register accounts without a valid email address via a valemail action with the valmem set to a pre-assigned user ID, which is visible from a memberlist action.
EPSS
Процентиль: 74%
0.00833
Низкий
4 Medium
CVSS2
Дефекты
CWE-20