Medium severity5.7NVD Advisory· Published Aug 30, 2021· Updated Jun 17, 2026
CVE-2020-18124
CVE-2020-18124
Description
A cross-site request forgery (CSRF) vulnerability in Indexhibit 2.1.5 allows attackers to arbitrarily reset account passwords.
Affected products
2- Indexhibit/Indexhibitdescription
- Range: <=2.1.5
Patches
Vulnerability mechanics
References
1- github.com/Indexhibit/indexhibit/issues/19nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.