Medium severity6.1NVD Advisory· Published Jul 24, 2017· Updated May 13, 2026
CVE-2017-10711
CVE-2017-10711
Description
In SimpleRisk 20170614-001, a CSRF attack on reset.php (aka the Send Password Reset Email form) can insert XSS sequences via the user parameter.
Affected products
1- cpe:2.3:a:simplerisk:simplerisk:20170614-001:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.seekurity.com/blog/general/reflected-xss-vulnerability-in-simplerisk/nvdExploitThird Party Advisory
- www.youtube.com/watchnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.