Lucene search
MitreCVELIST:CVE-2023-48652HistoryDec 25, 2023 - 12:00 a.m.
CVE-2023-48652
2023-12-2500:00:00
mitre
www.cve.org
1
concrete cms 9.2.3
cross site request forgery
csrf
server report logs
web application
admin user
authenticated
Concrete CMS 9 before 9.2.3 is vulnerable to Cross Site Request Forgery (CSRF) via /ccm/system/dialogs/logs/delete_all/submit. An attacker can force an admin user to delete server report logs on a web application to which they are currently authenticated.
Related
veracode
veracode
Cross Site Request Forgery
2023-12-28 14:51:38
osv
osv
CVE-2023-48652
2023-12-25 08:15:07
Concrete CMS Cross Site Request Forgery (CSRF)
2023-12-25 09:30:21
cve
cve
CVE-2023-48652
2023-12-25 08:15:07
nvd
nvd
CVE-2023-48652
2023-12-25 08:15:07
github
github
Concrete CMS Cross Site Request Forgery (CSRF)
2023-12-25 09:30:21
prion
prion
Cross site request forgery (csrf)
2023-12-25 08:15:00