CVE-2018-16416

CVE-2018-16416

EPSS 0.9%

Cross-site request forgery (CSRF) vulnerability in my_profile/edit?inline= in FUEL CMS 1.4 allows remote attackers to change the administrator's password.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/daylightstudio/FUEL-CMS/issues/481 http://www.iwantacve.cn/index.php/archives/48/