vulnerability e-mail verification bypass
severity 5.3
language php
registry packagist


UserFrosting is following strict email verification but to bypass this use email change

Proof of Concept

  1. setup UserFrosting repo or platform to reproduce the vulnerability
  2. Create a user there is a strict email verification so verify the email to login
  3. now go to My Account change the email id then save
  4. It will saves the new email id without any verification
  5. now logout and try login it wont allow us to login with old verified email but with new unverified email

Using this i registered an account with and password:Qwerty@12345


An attacker is able to register victims account without his knowledge. Using single email we can create multiple accounts in the email of our victims then they try to create account it says account already exist Pre account takeover possibility