CVE-2018-17045

Published September 14th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

6.8

MEDIUM

Affected

PROJECT

Description

An issue was discovered in CMS MaeloStore V.1.5.0. There is a CSRF vulnerability that can change the administrator password via admin/modul/users/aksi_users.php?act=update.

maelosoki/MaeloStore

CMS for Web publishing and product catalog. Base on CMS Lokomedia

GitHub