PT-2018-11765 · Gleez · Gleez Cms
Shellsniper
·
Published
2018-07-05
·
Updated
2018-08-28
·
CVE-2018-13340
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Gleez CMS version 1.2.0
Description
The issue allows for CSRF, as demonstrated by a "page/add" request.
Recommendations
For Gleez CMS version 1.2.0, consider implementing proper CSRF protection mechanisms to prevent exploitation.
Exploit
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Gleez Cms