Incorrect access control in the AdHoc User creation form of EMSigner v2.8.7 allows unauthenticated malicious users to arbitrarily modify usernames and privileges by using the email address of a registered user.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emsigner emsigner 2.8.7 |