Description
qdPM 9.2 allows Cross-Site Request Forgery (CSRF) via the index.php/myAccount/update URI.
Remediation
References
Related Vulnerabilities
Ruby on Rails Improper Authentication Vulnerability (CVE-2012-3424)
Moodle URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-35652)
Liferay DXP CVE-2022-42126 Vulnerability (CVE-2022-42126)
MySQL CVE-2023-22084 Vulnerability (CVE-2023-22084)
WordPress 2.0.2 Username Remote PHP Code Injection Vulnerability (0.6.2 - 2.0.2)