2020-01-28 22:11:01
mitre
PUBLISHED
Cups Easy (Purchase & Inventory) 1.0 is vulnerable to CSRF that leads to admin account takeover via passwordmychange.php.