PT-2017-17967 · Flatcore · Flatcore
Shardulm94
·
Publicado
2017-04-14
·
Atualizado
2017-04-21
·
CVE-2017-7877
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
flatCore version 1.4.6
Description
A CSRF issue allows remote attackers to modify CMS configurations.
Recommendations
For flatCore version 1.4.6, update to a version that includes a fix for this issue, if available. If no specific fix is provided for version 1.4.6, consider implementing additional security measures to prevent CSRF attacks, such as validating request tokens.
Exploit
Correção
CSRF
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Flatcore