Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-26598

Disclosure Date: March 28, 2022 (last updated February 23, 2025)
ImpressCMS before 1.4.3 has Incorrect Access Control because include/findusers.php allows access by unauthenticated attackers (who are, by design, able to have a security token).
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0