2021-01-04 02:05:46
mitre
PUBLISHED
MK-AUTH through 19.01 K4.9 allows CSRF for password changes via the central/executar_central.php?acao=altsenha_princ URI.