Precios Enterprise

CVE-2017-8385

5.3MEDIUM

Craft CMS before 2.6.2976 does not prevent modification of the URL in a forgot-password email message.

Publicado: 5/1/2017Actualizado: 4/20/2025

Ver en NVD Ver en MITRE

Descripción

Craft CMS before 2.6.2976 does not prevent modification of the URL in a forgot-password email message.

Análisis IAImpulsado por IA

Productos Afectados

craftcmscraft_cms

Referencias

https://craftcms.com/changelog#2-6-2976
Release NotesVendor Advisory
https://twitter.com/CraftCMS/status/857743080224473088
Third Party Advisory
https://craftcms.com/changelog#2-6-2976
Release NotesVendor Advisory
https://twitter.com/CraftCMS/status/857743080224473088
Third Party Advisory