Cross-site request forgery (CSRF) vulnerability in user.php in Simplog 0.9.3.2, and possibly earlier, allows remote malicious users to hijack the authentication of administrators and users for requests that change passwords.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
simplog simplog 0.9.3.2 |