VYPR
Moderate severityNVD Advisory· Published Jun 23, 2020· Updated Aug 4, 2024

CVE-2020-13157

CVE-2020-13157

Description

modules\users\admin\edit.php in NukeViet 4.4 allows CSRF to change a user's password via an admin/index.php?nv=users&op=edit&userid= URI. The old password is not needed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.