Chyrp Lite version 2016.04 is vulnerable to a CSRF in the user settings function allowing malicious users to hijack the authentication of logged in users to modify account information, including their password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
chyrp-lite project chyrp lite 2016.04 |