Anchor CMS v0.12.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component anchor/routes/posts.php. This vulnerability allows attackers to arbitrarily delete posts.
References
Link | Resource |
---|---|
https://github.com/anchorcms/anchor-cms | Product Third Party Advisory |
https://github.com/butterflyhack/anchorcms-0.12.7-CSRF | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-03-24T22:06:49
Updated: 2022-03-24T22:06:49
Reserved: 2022-02-21T00:00:00
Link: CVE-2022-25576
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-03-24T23:15:07.703
Modified: 2022-03-29T18:17:33.817
Link: CVE-2022-25576
JSON object: View
Redhat Information
No data.
CWE