Description

PrestaShop before 1.4.11 allows logout CSRF.

Remediation

References

CVE-2013-4792

Related Vulnerabilities

Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.10)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7168)

WordPress Plugin MasterStudy LMS-for Online Courses and Education Local File Inclusion (3.3.3)

WordPress Plugin SendPress Newsletters Unspecified Vulnerability (1.7.6.11)

WordPress Plugin Light Post 'abspath' Parameter Remote File Include (1.4)

Severity

Medium

Classification

CVE-2013-4792 CWE-352 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities