Mass Account Creation Vulnerability in Optimizely Commerce B2B
A problem was found in Optimizely Configured Commerce versions earlier than 5.2.2408. For new accounts, the Commerce B2B app does not need email confirmation. This medium-severity issue lets many accounts be created easily. This might impact database storage and allows unrequested storefront accounts to be made for visitors.