VYPR
Unrated severityNVD Advisory· Published Sep 24, 2007· Updated Jun 16, 2026

CVE-2007-5038

CVE-2007-5038

Description

The offer_account_by_email function in User.pm in the WebService for Bugzilla before 3.0.2, and 3.1.x before 3.1.2, does not check the value of the createemailregexp parameter, which allows remote attackers to bypass intended restrictions on account creation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.