Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cross-Site Request Forgery in PAD CMS
Vulnerability Description
PAD CMS is vulnerable to Cross-Site Request Forgery in reset password's functionality. Malicious attacker can craft special website, which when visited by the victim, will automatically send a POST request changing currently logged user's password to defined by the attacker value. This issue affects all 3 templates: www, bip and www+bip. This product is End-Of-Life and producent will not publish patches for this vulnerability.
CVSS Information
N/A
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Polska Akademia Dostępności CMS 跨站请求伪造漏洞
Vulnerability Description
Polska Akademia Dostępności CMS是波兰Polska Akademia Dostępności公司的一个无障碍网站内容管理系统。 Polska Akademia Dostępności CMS存在跨站请求伪造漏洞,该漏洞源于重置密码功能容易受到跨站请求伪造攻击。
CVSS Information
N/A
Vulnerability Type
N/A