Unrated severityOSV Advisory· Published Mar 23, 2018· Updated Sep 16, 2024
CVE-2018-1000137
CVE-2018-1000137
Description
I, Librarian version 4.8 and earlier contains a Cross site Request Forgery (CSRF) vulnerability in users.php that can result in the password of the admin being forced to be changed without the administrator's knowledge.
Affected products
1- Range: 3.0, 3.1, 3.2, …
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- github.com/mkucej/i-librarian/issues/121mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.