Unrated severityNVD Advisory· Published Jan 29, 2026· Updated Mar 5, 2026

Liman 0.7 - Cross-Site Request Forgery (Change Password)

CVE-2020-37007

Description

Liman 0.7 contains a cross-site request forgery vulnerability that allows attackers to manipulate user account settings without proper request validation. Attackers can craft malicious HTML forms to change user passwords or modify account information by tricking logged-in users into submitting unauthorized requests.

Affected products

Liman/Limanllm-create
Range: = 0.7
salihciftci/Limanv5
Range: 0.7

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/48869mitreexploit
www.vulncheck.com/advisories/liman-cross-site-request-forgery-change-passwordmitrethird-party-advisory
web.archive.org/web/20201109042653/https://github.com/salihciftci/limanmitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000