| ID | CVE-2020-19263 | ||||||
| Sažetak | A cross-site request forgery (CSRF) in MipCMS v5.0.1 allows attackers to arbitrarily escalate user privileges to administrator via index.php?s=/user/ApiAdminUser/itemEdit. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:M/Au:N/C:P/I:P/A:P | ||||||
| Zadnje važnije ažuriranje | 20-09-2021 - 16:22 | ||||||
| Objavljeno | 09-09-2021 - 18:15 |
