A CSRF vulnerability exists in Anchor CMS 0.12.7 anchor/views/users/edit.php that can change the Delete admin users.
References
Link | Resource |
---|---|
http://anchorcms.com/ | Product Vendor Advisory |
http://packetstormsecurity.com/files/161048/Anchor-CMS-0.12.7-Cross-Site-Request-Forgery.html | Exploit Third Party Advisory VDB Entry |
https://anchorcms.com/ | Product Vendor Advisory |
https://twitter.com/NinadMishra5/status/1350077938176151558 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-01-19T13:35:04
Updated: 2021-01-21T16:06:13
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-23342
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-01-19T14:15:11.890
Modified: 2021-02-01T15:53:17.197
Link: CVE-2020-23342
JSON object: View
Redhat Information
No data.
CWE