Description
Cross-site request forgery (CSRF) vulnerability in the Admin web interface in OpenVPN Access Server before 1.8.5 allows remote attackers to hijack the authentication of administrators for requests that create administrative users.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Justified Gallery Cross-Site Scripting (1.0.8)
ownCloud Improper Access Control Vulnerability (CVE-2016-9468)
WordPress Plugin Mailtree Log Mail Cross-Site Scripting (1.0.0)
WordPress 5.8.x Multiple Vulnerabilities (5.8 - 5.8.8)
PostgreSQL Improper Authentication Vulnerability (CVE-2009-3231)