RSS   Vulnerabilities for 'Cis-cat pro dashboard'   RSS

2018-01-31
 
CVE-2017-8916

CWE-640
 

 
In Center for Internet Security CIS-CAT Pro Dashboard before 1.0.4, an authenticated user is able to change an administrative user's e-mail address and send a forgot password email to themselves, thereby gaining administrative access.

 


Copyright 2019, cxsecurity.com

 

Back to Top