2 matches found
CVE-2021-21495
creationtimestamp| type| source ---|---|--- 2021-01-04 07:36:16+00:00| seen| https://t.me/cibsecurity/21519...
CVE-2021-21495
CVE-2021-21495 affects MK-AUTH up to version 19.01 K4.9, where a Cross-Site Request Forgery (CSRF) enables password changes via the URI central/executar_central.php?acao=altsenha_princ. The connected sources consistently describe the vulnerability as a CSRF flaw affecting the password-change func...