Description

Contao 4.7 allows CSRF.

Remediation

References

CVE-2019-10642

Related Vulnerabilities

XWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2023-34466)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2355)

Claroline Other Vulnerability (CVE-2006-7048)

WordPress 5.7.x Multiple Vulnerabilities (5.7 - 5.7.9)

WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.5.9)

Severity

High

Classification

CVE-2019-10642 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities