An issue was discovered in CMS MaeloStore V.1.5.0. There is a CSRF vulnerability that can change the administrator password via admin/modul/users/aksi_users.php?act=update.
References
Link | Resource |
---|---|
https://github.com/maelosoki/MaeloStore/issues/1 | Exploit Issue Tracking Third Party Advisory |
Configurations
History
No history.
Information
Published : 2018-09-14 07:29
Updated : 2024-02-28 16:48
NVD link : CVE-2018-17045
Mitre link : CVE-2018-17045
CVE.ORG link : CVE-2018-17045
JSON object : View
Products Affected
cms_maelostore_project
- cms_maelostore
CWE
CWE-352
Cross-Site Request Forgery (CSRF)