Description

qa-include/qa-install.php in Question2Answer before 1.7.5 allows remote attackers to create multiple user accounts.

Remediation

References

CVE-2017-12775

Related Vulnerabilities

Drupal Core 8.x.x Remote Code Execution (8.0.0 - 8.4.8)

MySQL CVE-2019-2503 Vulnerability (CVE-2019-2503)

WordPress Plugin Cleeng-Sell your videos Cross-Site Scripting (2.3.2)

WordPress Plugin Simple Custom CSS and JS Cross-Site Scripting (3.3)

phpMyFAQ Improper Access Control Vulnerability (CVE-2023-2429)

Severity

High

Classification

CVE-2017-12775 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities