CVE-2017-8385
5.3MEDIUMCraft CMS before 2.6.2976 does not prevent modification of the URL in a forgot-password email message.
게시됨: 5/1/2017업데이트됨: 4/20/2025
설명
Craft CMS before 2.6.2976 does not prevent modification of the URL in a forgot-password email message.
AI 분석AI 기반
영향받는 제품
craftcmscraft_cms
참조
- https://craftcms.com/changelog#2-6-2976Release NotesVendor Advisory
- https://twitter.com/CraftCMS/status/857743080224473088Third Party Advisory
- https://craftcms.com/changelog#2-6-2976Release NotesVendor Advisory
- https://twitter.com/CraftCMS/status/857743080224473088Third Party Advisory