9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
45.0%
Cross-Site Request Forgery (CSRF) exists in Hashtopussy 0.4.0, allowing an admin password change via users.php.
github.com/s3inlc/hashtopussy/issues/241