RSS   Vulnerabilities for 'Simple-log'   RSS

2021-06-07
 
CVE-2020-18264

CWE-352
 

 
Cross Site Request Forgery (CSRF) in Simple-Log v1.6 allows remote attackers to gain privilege and execute arbitrary code via the component "Simple-Log/admin/admin.php?act=act_edit_member".

 
 
CVE-2020-18265

CWE-352
 

 
Cross Site Request Forgery (CSRF) in Simple-Log v1.6 allows remote attackers to gain privilege and execute arbitrary code via the component "Simple-Log/admin/admin.php?act=act_add_member".

 


Copyright 2024, cxsecurity.com

 

Back to Top