Cross-site request forgery (CSRF) in PbootCMS 1.3.2 allows malicious users to change the password of a user.
pbootcms pbootcms 1.3.2