Hoosk · Hoosk Codeigniter Cms · CVE-2020-16610
**Name of the Vulnerable Software and Affected Versions**
Hoosk Codeigniter CMS versions prior to 1.7.2
**Description**
The issue allows an attacker to induce an authenticated admin user to a malicious web page, resulting in unintended deletion of any accounts. This occurs due to a Cross Site Request Forgery (CSRF) issue.
**Recommendations**
For versions prior to 1.7.2, update to version 1.7.2 or later to resolve the issue.