CVE-2018-11474 – Monstra CMS 3.0.4 has a Session Management Issue in the Administrations Tab. A password ch …

0

Vuln ID: CVE-2018-11474

Published:  2018-05-25  19:29:00Z

Description: Monstra CMS 3.0.4 has a Session Management Issue in the Administrations Tab. A password change at admin/index.php?id=users&action=edit&user_id=1 does not invalidate a session that is open in a different browser.

Source: NVD.NIST.GOV