CVE-2021-47754

Name of the Vulnerable Software and Affected Versions Arunna version 1.0.0

Description The software contains a cross-site request forgery issue that permits attackers to alter user profile settings without requiring user authentication. An attacker can create a malicious form to modify user information, such as passwords, email addresses, and administrative rights, by deceiving authenticated users into submitting the form.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.