CVE-2021-26215

Name of the Vulnerable Software and Affected Versions SeedDMS versions 5.1.x

Description The issue is related to cross-site request forgery (CSRF) in the out.EditDocument.php file. This means an attacker could potentially trick a user into performing unintended actions on the web application.

Recommendations For SeedDMS version 5.1.x, consider disabling access to the out.EditDocument.php file until a patch is available to prevent potential CSRF attacks. Restricting user access to this file can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.