Sapplica : Security Vulnerabilities, CVEs, Published In 2019 (CSRF)
Sentrifugo 3.2 lacks CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code at index.php/dashboard/viewprofile via a crafted HTML page.
Max CVSS
8.8
EPSS Score
0.11%
Published
2019-09-06
Updated
2019-09-09
1 vulnerabilities found