Security Advisory

CVE-2025-3979

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-27 17:31:04

Last updated 2025-04-28 13:46:11

Assigner VulDB

State PUBLISHED

Description

A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-password-ajax-1 of the component Password Change Handler. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

← Browse all CVEs View on cve.org ↗