Cross Site Request Forgery (CSRF) exists in RSVP Invitation Online 1.0 via function/account.php, as demonstrated by modifying the admin password.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-01-24T10:00:00

Updated: 2024-08-05T05:47:56.203Z

Reserved: 2018-01-22T00:00:00

Link: CVE-2018-5976

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2018-01-24T10:29:00.440

Modified: 2018-02-12T15:34:39.277

Link: CVE-2018-5976

cve-icon Redhat

No data.