WEB APPLICATION VULNERABILITIES Standard & Premium

silverstripeCMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-12246)

Description

SilverStripe through 4.3.3 allows a Denial of Service on flush and development URL tools.

Remediation

References

Related Vulnerabilities

PHP Missing Release of Resource after Effective Lifetime Vulnerability (CVE-2010-4657)

WordPress Plugin bbPress Multiple Vulnerabilities (2.6.4)

WordPress Plugin Import all XML, CSV & TXT into WordPress Cross-Site Scripting (3.8.7)

WordPress Plugin Custom Field Template Cross-Site Request Forgery (2.5.1)

WordPress Plugin Visualizer:Tables and Charts Manager for WordPress Unspecified Vulnerability (1.5.6)

Severity

Medium

Classification

CVE-2019-12246 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Tags

Missing Update Known Vulnerabilities