2017-07-27 06:00:00
mitre
PUBLISHED
Cross-Site Request Forgery (CSRF) exists in Hashtopus 1.5g via the password parameter to admin.php in an a=config action.