Cross-site request forgery (CSRF) vulnerability in pixelpost 1.7.3 could allow remote malicious users to change the admin password.
pixelpost pixelpost 1.7.3