PT-2020-16260 · Monocms · Monocms Blog

Published

2020-10-06

Updated

2020-10-14

CVE-2020-25986

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions MonoCMS Blog version 1.0

Description A Cross Site Request Forgery (CSRF) issue allows attackers to change the password of a user.

Recommendations For MonoCMS Blog version 1.0, update to a version that includes a fix for this issue, as no specific workaround is provided.

Exploit

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2020-25986

Monocms Blog