2 matches found
CVE-2017-5959
CSRF token bypass in GeniXCMS before 1.0.2 could result in escalation of privileges. The forgotpassword.php page can be used to acquire a token...
CVE-2017-5959
CVE-2017-5959 affects GeniXCMS prior to 1.0.2. The vulnerability is a CSRF token bypass that can lead to privilege escalation, with the forgotpassword.php page enabling token acquisition. Multiple sources (NVD/NVDC CNVD) confirm the issue and the fix is v1.0.2. There is no explicit exploitation c...