HashBrown CMS 'postUser' function boost vulnerability
HashBrown CMS is an open source headless content management system CMS. A power lifting vulnerability exists in the 'postUser' function in HashBrown CMS version 1.3.3 and earlier. An attacker can exploit this vulnerability to change the hashed password of an administrator account or reset the...