Lucene search
Veracode Vulnerability DatabaseVERACODE:25447HistoryMay 18, 2020 - 8:23 a.m.
Cross-site Request Forgery (CSRF)
2020-05-1808:23:33
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
EPSS
0.001
Percentile
45.9%
intelliants/subrion is vulnerable to cross-site request forgery (CSRF). The vulnerability exists as it improperly invalidates the CSRF token for the panel/uploads/read.json GET request, potentially causing deletion of a file pass when the cmd=rm parameter value is set.
Related
nvd
nvd
CVE-2019-20390
2020-05-15 18:15:13
prion
prion
Cross site request forgery (csrf)
2020-05-15 18:15:00
osv
osv
CVE-2019-20390
2020-05-15 18:15:13
Subrion CMS Cross-Site Request Forgery (CSRF) vulnerability
2022-05-24 17:17:57
github
github
Subrion CMS Cross-Site Request Forgery (CSRF) vulnerability
2022-05-24 17:17:57
packetstorm
packetstorm
Subrion CMS 4.2.1 Cross Site Request Forgery
2020-05-14 00:00:00
cvelist
cvelist
CVE-2019-20390
2020-05-15 17:07:56
cve
cve
CVE-2019-20390
2020-05-15 18:15:13