Open boku7 opened 3 years ago
Cross-Site Request Forgery (CSRF) on edit_user.php page allows changing the admin password from a 3rd party site. For fix see: https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html
edit_user.php
Cross-Site Request Forgery (CSRF) on
edit_user.phppage allows changing the admin password from a 3rd party site. For fix see: https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html