CSRF Vulnerability in Creatiwity wityCMS 0.6.2 Allows Account Takeover via Email Field Modification

CSRF Vulnerability in Creatiwity wityCMS 0.6.2 Allows Account Takeover via Email Field Modification

CVE-2018-14029 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

CSRF vulnerability in admin/user/edit in Creatiwity wityCMS 0.6.2 allows an attacker to take over a user account, as demonstrated by modifying the account's email field.

Learn more about our Cms Pen Testing.