cve/CVE-2022-27432.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

681 B

Raw Permalink Blame History

CVE-2022-27432

Description

A Cross-Site Request Forgery (CSRF) in Pluck CMS v4.7.15 allows attackers to change the password of any given user by exploiting this feature leading to account takeover.

POC

Reference

https://owasp.org/www-community/attacks/csrf
https://www.exploit-db.com/exploits/50831

Github

No PoCs found on GitHub currently.

681 B Raw Permalink Blame History

CVE-2022-27432

Description

POC

Reference

Github

681 B

Raw Permalink Blame History