High severity8.8OSV Advisory· Published Sep 3, 2018· Updated Jun 17, 2026
CVE-2018-16416
CVE-2018-16416
Description
Cross-site request forgery (CSRF) vulnerability in my_profile/edit?inline= in FUEL CMS 1.4 allows remote attackers to change the administrator's password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 1.0.3, 1.0.4, 1.0.5, …
- Range: <= 1.4
Patches
Vulnerability mechanics
References
2- www.iwantacve.cn/index.php/archives/48/nvdExploitThird Party Advisory
- github.com/daylightstudio/FUEL-CMS/issues/481nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.