Unrated severityNVD Advisory· Published Aug 26, 2012· Updated Jun 16, 2026
CVE-2010-5093
CVE-2010-5093
Description
Member_ProfileForm in security/Member.php in SilverStripe 2.3.x before 2.3.7 allows remote attackers to hijack user accounts by saving data using the email address (ID) of another user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
13cpe:2.3:a:silverstripe:silverstripe:2.3.0:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:silverstripe:silverstripe:2.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc1:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc2:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:silverstripe:silverstripe:2.3.6:*:*:*:*:*:*:*
- (no CPE)range: 2.3.x < 2.3.7
Patches
Vulnerability mechanics
References
6- open.silverstripe.org/changeset/100744nvdExploitPatch
- doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.7nvd
- www.openwall.com/lists/oss-security/2012/04/30/1nvd
- www.openwall.com/lists/oss-security/2012/04/30/3nvd
- www.openwall.com/lists/oss-security/2012/05/01/3nvd
- www.silverstripe.org/security-releasesnvd
News mentions
0No linked articles in our index yet.