Author: overlordq
Description:
The Renameuser extension provides a RenameUserComplete hook for actions to trigger after a rename is performed. However AntiSpoof does not subscribe to this hook, so after a user gets renamed, there will be no entries in the spoofuser table for the renamed user and so the new username is vulnerable to other users spoofing it.
Version: unspecified
Severity: major