CVE-2018-3783

Published: Aug 17, 2018

Modified: Aug 5, 2024

PUBLISHED

A privilege escalation detected in flintcms versions <= 1.1.9 allows account takeover due to blind MongoDB injection in password reset.

Vendor	Product	Versions
https://github.com/JasonEtco	flintcms	affected `1.1.10`

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.