3 matches found
CVE-2014-3866
Multiple cross-site request forgery CSRF vulnerabilities in usersettings.php in Usercake 2.0.2 and earlier allow remote attackers to hijack the authentication of administrators for requests that change the 1 administrative password via the passwordc parameter or 2 administrative e-mail address vi...
CVE-2014-3866
CVE-2014-3866 documents CSRF vulnerabilities in the Admin settings flow of Usercake
CVE-2014-3866
creationtimestamp| type| source ---|---|--- 2014-05-25 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39198...