Email Address Spoofing Vulnerability in One Click Orgs

CVE-2011-4555 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

One Click Orgs before 1.2.3 does not require unique e-mail addresses for user accounts, which allows remote authenticated users to cause a denial of service (login disruption) or spoof votes or comments by selecting a conflicting e-mail address.

Learn more about our User Device Pen Test.