RSAuction 2.73.1.3 allows remote authenticated users to move their own account status from Suspended to Active via a direct request for the activation URL that is provided at the time of account registration. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Rsauction | Rscript | 2.73.1.3 (including) | 2.73.1.3 (including) |
References
- http://osvdb.org/35870
- http://secunia.com/advisories/25149
- http://www.securityfocus.com/bid/23895
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34192
- http://osvdb.org/35870
- http://secunia.com/advisories/25149
- http://www.securityfocus.com/bid/23895
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34192