WEB APPLICATION VULNERABILITIES Standard & Premium

Vanilla Forums Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-1000432)

Description

Vanilla Forums below 2.1.5 are affected by CSRF leading to Deleting topics and comments from forums Admin access

Remediation

References

CVE-2017-1000432

Related Vulnerabilities

Apache Tomcat Improper Input Validation Vulnerability (CVE-2011-2526)

Plone CMS Improper Privilege Management Vulnerability (CVE-2020-7941)

WordPress Plugin Art-Picture-Gallery Arbitrary File Upload (1.2.9)

WordPress Plugin Gutenberg Forms-WordPress Form Builder Arbitrary File Upload (2.2.9)

MySQL CVE-2014-6505 Vulnerability (CVE-2014-6505)

Severity

High

Classification

CVE-2017-1000432 CWE-352 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities