Security Advisory

CVE-2010-5093

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-26 18:00:00

Last updated 2024-09-16 20:42:48

Assigner redhat

State PUBLISHED

Description

Member_ProfileForm in security/Member.php in SilverStripe 2.3.x before 2.3.7 allows remote attackers to hijack user accounts by saving data using the email address (ID) of another user.

← Browse all CVEs View on cve.org ↗