CVE

CVE-2018-3783

CVE-2018-3783

A privilege escalation detected in flintcms versions <= 1.1.9 allows account takeover due to blind MongoDB injection in password reset.

Source: CVE-2018-3783

Exit mobile version