CVE-2018-25177
CVE-2018-25177 : Data Center Audit 2.6.2 has a cross-site request forgery that lets attackers reset the administrator password without authentication by posting to dca_resetpw.php with parameters updateuser, pass, pass2, and submit_reset. This enables administrative access. CVSS metrics are provi...