The password-reset feature in as/index.php in SweetRice CMS prior to 0.6.7.1 allows remote malicious users to modify the administrator's password by specifying the administrator's e-mail address in the email parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
basic-cms sweetrice 0.6.7.1 |