2 matches found
HashBrown CMS 'postUser' function boost vulnerability
HashBrown CMS is an open source headless content management system CMS. A power lifting vulnerability exists in the 'postUser' function in HashBrown CMS version 1.3.3 and earlier. An attacker can exploit this vulnerability to change the hashed password of an administrator account or reset the...
Unspecified Vulnerability in HashBrown CMS
HashBrown CMS is an open source headless content management system CMS. A security vulnerability exists in the Server/Entity/Resource/Connection.js file in HashBrown CMS versions prior to 1.3.2. The vulnerability can be exploited by an attacker to access the parent directory with the help of a...