Description
The cross-site request forgery (CSRF) protection mechanism in e107 before 0.7.23 uses a predictable random token based on the creation date of the administrator account, which allows remote attackers to hijack the authentication of administrators for requests that add new users via e107_admin/users.php.
Remediation
References
Related Vulnerabilities
Roundcube Files or Directories Accessible to External Parties Vulnerability (CVE-2017-16651)
WordPress Plugin WP Domain Redirect SQL Injection (1.0)
Nginx Out-of-bounds Write Vulnerability (CVE-2022-41742)
Jboss EAP Incorrect Authorization Vulnerability (CVE-2014-0169)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-0813)