CVE-2011-4555
06.12.2011, 11:55
One Click Orgs before 1.2.3 does not require unique e-mail addresses for user accounts, which allows remote authenticated users to cause a denial of service (login disruption) or spoof votes or comments by selecting a conflicting e-mail address.Enginsight
| Vendor | Product | Version |
|---|---|---|
| oneclickorgs | one_click_orgs | 𝑥 ≤ 1.2.2 |
| oneclickorgs | one_click_orgs | 1.0.0 |
| oneclickorgs | one_click_orgs | 1.0.1 |
| oneclickorgs | one_click_orgs | 1.1.0 |
| oneclickorgs | one_click_orgs | 1.1.1 |
| oneclickorgs | one_click_orgs | 1.2.0 |
| oneclickorgs | one_click_orgs | 1.2.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration