A vulnerability in /include/web_check.php of SEMCMS v3.8 allows attackers to reset the Administrator account’s password.
