描述
Craft CMS before 2.6.2976 does not prevent modification of the URL in a forgot-password email message.
AI分析AI驱动
受影响产品
craftcmscraft_cms
参考资料
- https://craftcms.com/changelog#2-6-2976Release NotesVendor Advisory
- https://twitter.com/CraftCMS/status/857743080224473088Third Party Advisory
- https://craftcms.com/changelog#2-6-2976Release NotesVendor Advisory
- https://twitter.com/CraftCMS/status/857743080224473088Third Party Advisory