Email Address Spoofing Vulnerability in One Click Orgs
CVE-2011-4555 · MEDIUM Severity
AV:N/AC:L/AU:S/C:N/I:N/A:P
One Click Orgs before 1.2.3 does not require unique e-mail addresses for user accounts, which allows remote authenticated users to cause a denial of service (login disruption) or spoof votes or comments by selecting a conflicting e-mail address.
Learn more about our User Device Pen Test.