4 matches found
CVE-2023-4381
Unverified Password Change in GitHub repository instantsoft/icms2 prior to 2.16.1-git...
CVE-2023-4381 Unverified Password Change in instantsoft/icms2
Unverified Password Change in GitHub repository instantsoft/icms2 prior to 2.16.1-git...
CVE-2023-4381 Unverified Password Change in instantsoft/icms2
Unverified Password Change in GitHub repository instantsoft/icms2 prior to 2.16.1-git...
CVE-2023-4381
CVE-2023-4381 affects the instantsoft/icms2 CMS prior to version 2.16.1-git. The root cause is an unverified password change, enabling an attacker to change a user’s password without proper verification. Impact is described as minimal in the CVSS data, but the issue enables unauthorized password ...