Yeager CMS 1.2.1 Password Recovery SQL Injection Vulnerability

Yeager CMS 1.2.1 Password Recovery SQL Injection Vulnerability

CVE-2015-7568 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in the password recovery feature in Yeager CMS 1.2.1 allows remote attackers to change the account credentials of known users via the "userEmail" parameter.

Learn more about our Cms Pen Testing.