2 matches found
CVE-2022-41474
RPCMS v3.0.2 is affected by a Cross-Site Request Forgery (CSRF) that allows attackers to arbitrarily change the password of any account. The CVE entry documents this CSRF issue as the underlying vulnerability; there are no public details in the provided documents about the exact root cause, affec...
CVE-2022-41474
RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily change the password of any account...