CSRF Vulnerability in CMS MaeloStore V.1.5.0 Allows Unauthorized Password Change

CSRF Vulnerability in CMS MaeloStore V.1.5.0 Allows Unauthorized Password Change

CVE-2018-17045 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An issue was discovered in CMS MaeloStore V.1.5.0. There is a CSRF vulnerability that can change the administrator password via admin/modul/users/aksi_users.php?act=update.

Learn more about our Cms Pen Testing.