New vulnerability on the NVD: CVE-2017-16756

February 20, 2018

An issue was discovered in Userscape HelpSpot before 4.7.2. A cross-site request forgery vulnerability exists on POST requests to the "index.php?pg=password.change" endpoint. This allows an attacker to change the password of another user's HelpSpot account.

Published at: February 19, 2018 at 07:29PM

Search This Blog

New York Fashion Week

New vulnerability on the NVD: CVE-2017-16756

Comments

Post a Comment

Popular posts from this blog

New story on InStyle: Prince Andrew's Friends Are Now Calling the Allegations Against Him a "Witch Hunt"

New story on InStyle: Melania Trump Leaves Hospital After "Successful" Kidney Surgery

New story on InStyle: How Cannabis Company Lord Jones Was Born