ID | CVE-2010-5093 | ||||||
Sažetak | Member_ProfileForm in security/Member.php in SilverStripe 2.3.x before 2.3.7 allows remote attackers to hijack user accounts by saving data using the email address (ID) of another user. | ||||||
Reference |
|
||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:L/Au:N/C:N/I:P/A:N | ||||||
Zadnje važnije ažuriranje | 27-08-2012 - 21:19 | ||||||
Objavljeno | 26-08-2012 - 18:55 |