Цены Enterprise

CVE-2017-8385

5.3MEDIUM

Craft CMS before 2.6.2976 does not prevent modification of the URL in a forgot-password email message.

Опубликовано: 5/1/2017Обновлено: 4/20/2025

Посмотреть на NVD Посмотреть на MITRE

Описание

Craft CMS before 2.6.2976 does not prevent modification of the URL in a forgot-password email message.

ИИ-АнализНа базе ИИ

Затронутые продукты

craftcmscraft_cms

Ссылки

https://craftcms.com/changelog#2-6-2976
Release NotesVendor Advisory
https://twitter.com/CraftCMS/status/857743080224473088
Third Party Advisory
https://craftcms.com/changelog#2-6-2976
Release NotesVendor Advisory
https://twitter.com/CraftCMS/status/857743080224473088
Third Party Advisory