VYPR
High severity8.8NVD Advisory· Published Oct 5, 2018· Updated Jun 17, 2026

CVE-2018-17986

CVE-2018-17986

Description

rars/user/data in razorCMS 3.4.8 allows CSRF for changing the password of an admin user.

Affected products

2
  • Razorcms/Razorcmsinferred2 versions
    = 3.4.8+ 1 more
    • (no CPE)range: = 3.4.8
    • (no CPE)range: = 3.4.8

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.