CVE-2010-3782

Publication date

2020-01-02 18:39:55

Family

mitre

State

PUBLISHED

Description

obs-server before 1.7.7 allows logins by unconfirmed accounts due to a bug in the REST api implementation.