U.S. Dept Of Defense: Account Takeover via Unverified Email Change and Improper Session Handling
A vulnerability was discovered in the email change functionality of the system. When the email was changed to an unregistered email address, the system accepted the change without proper verification. If the victim later registered using the same email, the attacker's existing session was not...