Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Question2Answer Improper Input Validation Vulnerability (CVE-2017-12775)

Description

qa-include/qa-install.php in Question2Answer before 1.7.5 allows remote attackers to create multiple user accounts.

Remediation

References

Related Vulnerabilities

OpenSSL NULL Pointer Dereference Vulnerability (CVE-2004-0079)

WordPress Plugin WP Easy Gallery Cross-Site Scripting (4.1.3)

WordPress Plugin Media Library Assistant Multiple Vulnerabilities (2.81)

WordPress Plugin YITH WooCommerce Questions and Answers Security Bypass (1.1.9)

OpenSSL Resource Management Errors Vulnerability (CVE-2012-1165)

Severity

High

Classification

CVE-2017-12775 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities