CVE-2019-8902 - CERT CVE

  1. CVE-2019-8902

ID CVE-2019-8902
Sažetak An issue was discovered in idreamsoft iCMS through 7.0.14. A CSRF vulnerability can delete users' articles via the public/api.php?app=user URI.
Reference
CVSS
Base: 4.9
Impact: 4.9
Exploitability:6.8
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM SINGLE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL PARTIAL
CVSS vektor AV:N/AC:M/Au:S/C:N/I:P/A:P
Zadnje važnije ažuriranje 19-02-2019 - 17:17
Objavljeno 18-02-2019 - 14:29