2022-03-16 12:29:54
mitre
PUBLISHED
In maccms v10, an attacker can log in through /index.php/user/login in the "col" and "openid" parameters to gain privileges.