Cross-site request forgery (CSRF) vulnerability in ecrire/action/logout.php in SPIP before 2.1.24 allows remote attackers to hijack the authentication of arbitrary users for requests that logout the user via unspecified vectors.
Max CVSS
6.8
EPSS Score
0.79%
Published
2013-11-18
Updated
2016-12-08
1 vulnerabilities found