Cross-site request forgery (CSRF) vulnerability in Spina before commit bfe44f289e336f80b6593032679300c493735e75.
8.8CVSS
8.8AI Score
0.002EPSS
Cross-site Scripting (XSS) - Stored in GitHub repository spinacms/spina prior to 2.15.1.
4.8CVSS
4.3AI Score
0.001EPSS
A vulnerability was found in Spina CMS up to 2.18.0. It has been classified as problematic. Affected is an unknown function of the file /admin/pages/. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
4.3CVSS
4.7AI Score
0.001EPSS
A vulnerability classified as problematic was found in Spina CMS 2.18.0. Affected by this vulnerability is an unknown functionality of the file /admin/media_folders. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the publ...
8.8CVSS
4.7AI Score
0.001EPSS