Boinc · Boinc Server/Website Code · CVE-2018-1000875
Name of the Vulnerable Software and Affected Versions:
BOINC Server and Website Code versions 0.9 through 1.0.2
Description:
The issue allows for authentication bypass, potentially granting access to any user account. This can be exploited via a specially crafted URL.
Recommendations:
For versions 0.9 through 1.0.2, update to version 1.0.3 to resolve the issue.