Описание
Cross-Site Request Forgery in Anchor CMS
Anchor CMS v0.12.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component anchor/routes/posts.php. This vulnerability allows attackers to arbitrarily delete posts.
Пакеты
Наименование
anchorcms/anchor-cms
composer
Затронутые версииВерсия исправления
<= 0.12.7
Отсутствует
Связанные уязвимости
CVSS3: 4.5
nvd
почти 4 года назад
Anchor CMS v0.12.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component anchor/routes/posts.php. This vulnerability allows attackers to arbitrarily delete posts.