The Typesetter CMS 5.1 logout functionality is affected by a CSRF vulnerability. The logout function of the admin panel is not protected by any CSRF tokens. An attacker can logout the user using this vulnerability.
References
Link | Resource |
---|---|
https://fatihhcelik.blogspot.com/2019/12/typesetter-cms-51-logout-csrf_30.html | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-01-05T22:05:17
Updated: 2020-01-05T22:05:17
Reserved: 2019-12-29T00:00:00
Link: CVE-2019-20077
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-01-05T23:15:11.047
Modified: 2020-01-09T21:52:44.940
Link: CVE-2019-20077
JSON object: View
Redhat Information
No data.
CWE