Soumettre #418417: QileCMS ≤v1.1.3 Authorization Bypassinformation

TitreQileCMS ≤v1.1.3 Authorization Bypass
DescriptionQileCMS ≤v1.1.3 has an arbitrary account password reset vulnerability. An attacker can send a verification code to an email address they control and use this code to reset the password of any user account, thereby gaining full control over the target account. This vulnerability poses a significant security risk to user accounts.
La source⚠️ https://note.zhaoj.in/share/PZZ7IeudhULs
Utilisateur
 glzjin (UID 59815)
Soumission05/10/2024 10:29 (il y a 2 ans)
Modérer12/10/2024 12:04 (7 days later)
StatutAccepté
Entrée VulDB280234 [QileCMS jusqu’à 1.1.3 Verification Code Forget.php sendEmail élévation de privilèges]
Points18

PrécédentAperçuSuivant

Interested in the pricing of exploits?

See the underground prices here!