Improper Email Validation in Gaudire's Assassin Game Platform
CVE-2026-7167

6.9MEDIUM

Key Information:

Vendor: Gaudire
Status: Assassin Game
Vendor: CVE Published:; 22 June 2026

What is CVE-2026-7167?

A significant vulnerability exists in Gaudire's Assassin Game platform due to inadequate validation of the 'email' field during the user authentication phase. This flaw allows the use of unverified or fictitious email addresses, enabling attackers to create multiple fraudulent accounts. By exploiting this vulnerability, authenticated users can engage in mass spam attacks, abuse system functionalities, and potentially bypass established user controls, endangering the overall security and reliability of the platform.

Affected Version(s)

Assassin game last version

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multip...

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 22, 2026
Vulnerability Reserved
Apr 27, 2026

Credit

Adrià Bonilla Martin k0x

CVE-2026-7167 Data

JSON