Security Advisory

CVE-2017-8081

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-04-30 19:00:00

Last updated 2024-08-05 16:27:22

Assigner mitre

State PUBLISHED

Description

Poor cryptographic salt initialization in admin/inc/template_functions.php in GetSimple CMS 3.3.13 allows a network attacker to escalate privileges to an arbitrary user or conduct CSRF attacks via calculation of a session cookie or CSRF nonce.

← Browse all CVEs View on cve.org ↗