Paessler PRTG Network Monitor Local File Inclusion Vulnerability

Paessler PRTG Network Monitor contains a local file inclusion vulnerability that allows a remote, unauthenticated attacker to create users with read-write privileges including administrator...

The vulnerability of the XWiki platform for creating collaborative web applications lies in its lack of access control mechanisms. This allows attackers to create new users.

The vulnerability of the XWiki Platform lies in its lack of access control mechanisms. Exploiting this vulnerability could allow a malicious actor to create a new user remotely...

GHSA-GF2Q-J2QQ-PJF2 OpenStack Keystone Allows Remote User Account Creation

OpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and OpenStack Essex 2012.1, allows remote attackers to add an arbitrary user to an arbitrary tenant via a request to update the user's default tenant to the administrative API. NOTE: this identifier was originally incorrectly...

CVE-2020-12281

iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to create a new user via /index.php...

CVE-2020-12281

iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to create a new user via /index.php...

ZyXEL ZyWALL USG Cross-Site Request Forgery Vulnerability

ZyXEL ZyWALL USG is a network security firewall appliance from Hopkins ZyXEL Technology. A cross-site request forgery vulnerability exists in ZyXEL ZyWALL USG version 2.12 AQQ.2 and 3.30 AQQ.7. A remote attacker can exploit this vulnerability by adding user accounts with the help of the 'cmd'...

The vulnerability of the Isilon operating system OneFS, which allows a hacker to bypass the SmartLock restriction

The vulnerability of the Isilon operating system OneFS is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to circumvent the SmartLock restriction by creating a user account and setting up an login session remotely...

Alcatel-Lucent CellPipe 7130 RG 5Ae.M2013 HOL Cross-Site Request Forgery Vulnerability

The Alcatel-Lucent CellPipe 7130 RG 5Ae.M2013 HOL is a router product from Alcatel-Lucent, France. A cross-site request forgery vulnerability in the Alcatel-Lucent CellPipe 7130 RG 5Ae.M2013 HOL using firmware version 1.0.0.20h.HOL allows remote attackers to construct malicious URIs, trick users...

CVE-2006-4580

register.php in The Address Book 1.04e allows remote attackers to bypass the "Allow User Self-Registration" setting and create arbitrary users by setting the mode parameter to "confirm"...