CVE-2018-16338

An issue was discovered in AuraCMS 2.3. There is a CSRF vulnerability that can change the administrator's password via admin.php?mod=users and subsequently add a page or menu, or submit a topic.
References
Link Resource
https://github.com/auracms/AuraCMS/issues/3 Exploit Issue Tracking
Configurations

Configuration 1

cpe:2.3:a:auracms:auracms:2.3:*:*:*:*:*:*:*

Information

Published : 2018-09-02 06:29

Updated : 2018-10-25 11:55


NVD link : CVE-2018-16338

Mitre link : CVE-2018-16338

Products Affected
No products.
CWE