Podatność CVE-2023-50455


Publikacja: 2023-12-10   Modyfikacja: 2023-12-14

Opis:
An issue was discovered in Zammad before 6.2.0. Due to lack of rate limiting in the "email address verification" feature, an attacker could send many requests for a known address to cause Denial Of Service (generation of many emails, which would also spam the victim).

Typ:

CWE-770

Affected software
Zammad -> Zammad 

 Referencje:
https://zammad.com/en/advisories/zaa-2023-06

Copyright 2024, cxsecurity.com

 

Back to Top