Описание
QuickAppsCMS Cross-Site Request Forgery (CSRF)
An issue was discovered in QuickAppsCMS (aka QACMS) through 2.0.0-beta2. A CSRF vulnerability can change the administrator password via the user/me URI.
Пакеты
Наименование
quickapps/cms
composer
Затронутые версииВерсия исправления
<= 2.0.0-beta2
Отсутствует
Связанные уязвимости
CVSS3: 8.8
nvd
больше 7 лет назад
An issue was discovered in QuickAppsCMS (aka QACMS) through 2.0.0-beta2. A CSRF vulnerability can change the administrator password via the user/me URI.