Lucene search
GoogleOSV:GHSA-9CC3-5W85-PXVXHistoryMar 05, 2022 - 12:00 a.m.
Cross Site Request Forgery in intelliants/subrion
2022-03-0500:00:45
Google
osv.dev
9
csrf
vulnerability
intelliants subrion cms
remote unauthenticated user
administrator function
arbitrary administrator user
EPSS
0.002
Percentile
55.3%
Cross Site Request Forgery (CSRF) vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user.
Related
osv
osv
CVE-2020-18326
2022-03-04 15:15:08
prion
prion
Cross site request forgery (csrf)
2022-03-04 15:15:00
cnvd
cnvd
Subrion CMS Cross-site Request Forgery Vulnerability (CNVD-2022-20162)
2022-03-08 00:00:00
cvelist
cvelist
CVE-2020-18326
2022-03-04 14:15:37
github
github
Cross Site Request Forgery in intelliants/subrion
2022-03-05 00:00:45
nvd
nvd
CVE-2020-18326
2022-03-04 15:15:08
cve
cve
CVE-2020-18326
2022-03-04 15:15:08