2026-01-12 00:00:00
mitre
PUBLISHED
A CSRF issue in index.php in QloApps hotel eCommerce 1.5.1 allows an attacker to change the admins email address via a crafted HTML document.