ImpressCMS prior to 1.4.3 has Incorrect Access Control because include/findusers.php allows access by unauthenticated attackers (who are, by design, able to have a security token).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
impresscms impresscms |