RSS   Podatności dla 'Ignitedcms'   RSS

2021-08-06
 
CVE-2020-18694

CWE-352
 
 
Cross Site Request Forgery (CSRF) in IgnitedCMS v1.0 allows remote attackers to obtain sensitive information and gain privilege via the component "/admin/profile/save_profile".

 
2019-07-06
 
CVE-2019-13370

CWE-352
 
 
index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator.

 
2018-08-08
 
CVE-2018-15203

CWE-352
 
 
An issue was discovered in Ignited CMS through 2017-02-19. ign/index.php/admin/pages/add_page allows a CSRF attack to add pages.

 

Copyright 2024, cxsecurity.com

 

Back to Top