PT-2018-11269 · Akcms · Akcms
Chenrui1896
·
Publicado
2018-06-19
·
Atualizado
2018-08-09
·
CVE-2018-12583
CVSS v3.1
6.5
Média
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
AKCMS version 6.1
Description
An issue was discovered that allows CSRF to delete an article via an admincp deleteitem action to "index.php".
Recommendations
For AKCMS version 6.1, consider implementing CSRF protection measures to prevent unauthorized deletion of articles, such as validating user requests and ensuring that the deleteitem action is properly authenticated.
Exploit
Correção
CSRF
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Akcms