CVE-2021-44937

Published December 14th, 2021

View on NVD ↗

CVSS v3

5.3

MEDIUM

CVSS v2

MEDIUM

Affected

PROJECT

Description

glFusion CMS v1.7.9 is affected by an arbitrary user registration vulnerability in /public_html/users.php. An attacker can register with the mailbox of any user. When users want to register, they will find that the mailbox has been occupied.

glFusion/glfusionUNAVAILABLE

glFusion CMS - Advanced Content Management with Style

GitHub