CVE-2010-5315 Information

Feb 14, 2021 cve

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in BEdita before 3.1 allow remote attackers to hijack the authentication of administrators for requests that (1) create categories via a data array to news/saveCategories or (2) modify credentials via a data array to admin/saveUser.

Reference

https://www.htbridge.com/advisory/HTB22723

Share on: