Ektron is a privately held software company based in Nashua, New Hampshire. It provides web
content management and customer experience management software. Ektron's primary
product is Ektron Web Content Management, which is built on the Microsoft .NET Framework.
By dirrectly accessing the page located at /WorkArea/edituserprofile.aspx, an attacker can hijack the admin or builtin account and compromise the system.
- Upgrade to the latest version of Ektron CMS.
- WordPress Plugin Premium SEO Pack Security Bypass (220.127.116.11)
- WordPress Plugin Extra User Details Privilege Escalation (0.4.2)
- Drupal Core 8.x Multiple Security Bypass Vulnerabilities (8.0.0 - 8.3.6)
- WordPress Plugin Formidable Forms-Form Builder for WordPress Security Bypass (2.0.21)
- WordPress Plugin InfiniteWP Client Security Bypass (1.3.7)