Description
A cross-site request forgery vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This can result in unintended deletion of the store design schedule.
Remediation
References
Related Vulnerabilities
Magento Insufficient Session Expiration Vulnerability (CVE-2019-8149)
WordPress Plugin Contact Form Widget-Contact Query, Form Maker SQL Injection (1.0.9)
Internet Information Services Other Vulnerability (CVE-2000-0024)
WordPress 5.3.x Multiple Vulnerabilities (5.3 - 5.3.6)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1862)