phpSquidPass before 0.2 uses an incomplete regular expression to find a matching username in its database, which allows remote authenticated attackers to effectively delete other usernames via a short username that matches the end of the targeted username.
Score: 0.0
Priority: Unclassified
Score: 0.00184
Percentile:
0.40542
CVSS v2 Score: 4.0
Severity: