CVE-2020-13405

2020-07-16T19:15:00
ID CVE-2020-13405
Type cve
Reporter cve@mitre.org
Modified 2020-07-22T15:03:00

Description

userfiles/modules/users/controller/controller.php in Microweber before 1.1.20 allows an unauthenticated user to disclose the users database via a /modules/ POST request.