Medium severity6.5NVD Advisory· Published Jun 2, 2017· Updated Jun 17, 2026
CVE-2017-9378
CVE-2017-9378
Description
BigTree CMS through 4.2.18 does not prevent a user from deleting their own account. This could have security relevance because deletion was supposed to be an admin-only action, and the admin may have other tasks (such as data backups) to complete before a user is deleted.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
2- github.com/bigtreecms/BigTree-CMS/commit/f7899701d7be91b7dc546b65e44a27b668eb3b76nvdPatch
- github.com/bigtreecms/BigTree-CMS/issues/282nvdExploitIssue TrackingPatch
News mentions
0No linked articles in our index yet.