3 matches found
Design/Logic Flaw
A vulnerability in /include/webcheck.php of SEMCMS v3.8 allows attackers to reset the Administrator account's password...
CVE-2020-18078
A vulnerability in /include/webcheck.php of SEMCMS v3.8 allows attackers to reset the Administrator account's password...
CVE-2020-18078
CVE-2020-18078 affects SEMCMS v3.8 via a vulnerability in /include/web_check.php that allows resetting the Administrator password. Implementations in multiple feeds confirm the root cause as an access/verification issue within that script, leading to an account takeover risk for the admin account...