2 matches found
CVE-2026-34384
Admidio is an open-source user management solution. Prior to version 5.0.8, the createuser, assignmember, and assignuser action modes in modules/registration.php approve pending user registrations via GET request without validating a CSRF token. Unlike the deleteuser mode in the same file which...
CVE-2026-34384
creationtimestamp| type| source ---|---|--- 2026-03-27 17:30:43+00:00| published-proof-of-concept| https://github.com/Admidio/admidio/security/advisories/GHSA-ph84-r98x-2j22...