2018-08-05 19:00:00
mitre
PUBLISHED
An issue was discovered in WeaselCMS v0.3.5. CSRF can update the website settings (such as the theme, title, and description) via index.php.