register.php in The Address Book 1.04e allows remote malicious users to bypass the "Allow User Self-Registration" setting and create arbitrary users by setting the mode parameter to "confirm".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
the address book the address book 1.04e |