Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-45g2-r339-pjwf: Cockpit CMS Cross-Site Request Forgery vulnerability

A Cross-Site Request Forgery (CSRF) in the Admin portal of Cockpit CMS v2.5.2 allows attackers to execute arbitrary Administrator commands.

ghsa
#csrf#vulnerability#git

Cockpit CMS Cross-Site Request Forgery vulnerability

Moderate severity GitHub Reviewed Published Jul 20, 2023 to the GitHub Advisory Database • Updated Jul 21, 2023

Related news

CVE-2023-37650: Multiple Vulnerabilities in Cockpit CMS <= v2.5.2

A Cross-Site Request Forgery (CSRF) in the Admin portal of Cockpit CMS v2.5.2 allows attackers to execute arbitrary Administrator commands.