CVE-2016-4891

CVE-2016-4891

EPSS 1.0%

Cross-site request forgery (CSRF) vulnerability in SetsucoCMS all versions allows remote attackers to hijack the authentication of an administrator to change settings via unspecified vectors.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000196.html http://jvn.jp/en/jp/JVN80157683/index.html http://www.securityfocus.com/bid/93475