CVE-2016-1170

CVE-2016-1170

EPSS 0.6%

Cross-site request forgery (CSRF) vulnerability in the Casebook plugin before 0.9.4 for baserCMS allows remote attackers to hijack the authentication of administrators.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://jvndb.jvn.jp/jvndb/JVNDB-2016-000045 http://jvn.jp/en/jp/JVN55801246/index.html https://hiniarata.jp/news/archives/55