Description

Contao 4.7 allows CSRF.

Remediation

References

CVE-2019-10642

Related Vulnerabilities

Apache Tomcat Other Vulnerability (CVE-2003-0042)

WordPress Plugin WPeMatico RSS Feed Fetcher Cross-Site Scripting (2.3.7)

PHP Out-of-bounds Write Vulnerability (CVE-2024-11233)

WordPress Plugin WP-Polls Cross-Site Scripting (2.69)

axios Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-45857)

Severity

High

Classification

CVE-2019-10642 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities