CVE-2021-36569 - OpenCVE

Cross Site Request Forgery vulnerability in FUEL-CMS 1.4.13 allows remote attackers to run arbitrary code via post ID to /users/delete/2.

No CVSS v3.0

No CVSS v2

Vendors	Products
Thedaylightstudio	Fuel Cms

Configuration 1 [-]

cpe:2.3:a:thedaylightstudio:fuel_cms:1.4.13:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/daylightstudio/FUEL-CMS/issues/578	Exploit Issue Tracking Patch Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-02-03T00:00:00

Updated: 2023-02-03T00:00:00

Reserved: 2021-07-12T00:00:00

Link: CVE-2021-36569

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-02-03T18:15:11.290

Modified: 2023-02-09T19:01:51.830

Link: CVE-2021-36569

JSON object: View

Redhat Information

No data.

CWE