Security Advisory

CVE-2017-10711

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-07-24 13:00:00

Last updated 2024-08-05 17:41:55

Assigner mitre

State PUBLISHED

In SimpleRisk 20170614-001, a CSRF attack on reset.php (aka the Send Password Reset Email form) can insert XSS sequences via the user parameter.