Ponzu is a powerful and efficient open source HTTP server framework and content management system (CMS). A cross-site request forgery vulnerability exists in the configure.html component of Ponzu version 0.11.0. An attacker could use this vulnerability to change user and administrator credentials, and add or remove administrator accounts.
CPE | Name | Operator | Version |
---|---|---|---|
ponzu ponzu | eq | 0.11.0 |