CVE-2018-17045

An issue was discovered in CMS MaeloStore V.1.5.0. There is a CSRF vulnerability that can change the administrator password via admin/modul/users/aksi_users.php?act=update. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt