| 标题 | SeaCms V13.0 Cross-Site Request Forgery |
|---|
| 描述 | A Cross-Site Request Forgery (CSRF) vulnerability has been identified in SeaCms V13.0. This vulnerability allows an attacker to change a user's password without their consent by tricking them into visiting a malicious webpage. |
|---|
| 来源 | ⚠️ https://github.com/HuaQiPro/seacms/issues/30 |
|---|
| 用户 | jiashenghe (UID 39445) |
|---|
| 提交 | 2024-07-24 04時50分 (2 年前) |
|---|
| 管理 | 2024-07-27 22時14分 (4 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 272575 [SeaCMS 13.0 Password Change member.php?action=chgpwdsubmit newpwd/newpwd2 跨网站请求伪造] |
|---|
| 积分 | 16 |
|---|