2015-10-03 10:00:00
jpcert
PUBLISHED
baserCMS before 3.0.8 allows remote authenticated users to modify arbitrary user settings via a crafted request.