Password Reset Vulnerability in Instant Update CMS

Password Reset Vulnerability in Instant Update CMS

CVE-2018-1000501 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Instant Update CMS contains a Password Reset Vulnerability vulnerability in /iu-application/controllers/administration/auth.php that can result in Account Tackover. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in v0.3.3.

Learn more about our Cms Pen Testing.