CVE-2019-10014
CVE-2019-10014
In DedeCMS 5.7SP2, member/resetpassword.php allows remote authenticated users to reset the passwords of arbitrary users via a modified id parameter, because the key parameter is not properly validated.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →