CVE-2017-11726
ConnectWise Manage 2017.5 contains a Cross-Site Request Forgery (CSRF) vulnerability in services/system_io/actionprocessor/System.rails. The issue allows an attacker to induce unauthorized actions, demonstrated by changing an e-mail address setting. Public details across multiple sources confirm ...