MidnightBSD

Advisories for rsvp_invitation_online_project

CVE-2018-5976 MEDIUM

Cross Site Request Forgery (CSRF) exists in RSVP Invitation Online 1.0 via function/account.php, as demonstrated by modifying the admin password.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
rsvp_invitation_online_project rsvp_invitation_online 1.0