e107 Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2018-15901 - Vulnerability Database

e107 Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2018-15901

High

Reference: CVE-2018-15901

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-15901

Title: e107 Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

e107 2.1.8 has CSRF in 39usersettings.php39 with an impact of changing details such as passwords of users including administrators.