exploitDog

GHSA-cx75-hr43-9j56

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The Simple Forum 3.1d module for LoveCMS 1.6.2 Final does not properly restrict access to administrator functions, which allows remote attackers to change the administrator password via a direct request to modules/simpleforum/admin/index.php.

The Simple Forum 3.1d module for LoveCMS 1.6.2 Final does not properly restrict access to administrator functions, which allows remote attackers to change the administrator password via a direct request to modules/simpleforum/admin/index.php.

Ссылки

EPSS

Процентиль: 93%

0.09735

Низкий

CVE ID

Связанные уязвимости

CVE-2008-5308

nvd

около 17 лет назад

The Simple Forum 3.1d module for LoveCMS 1.6.2 Final does not properly restrict access to administrator functions, which allows remote attackers to change the administrator password via a direct request to modules/simpleforum/admin/index.php.

EPSS

Процентиль: 93%

0.09735

Низкий

CVE ID