ShowDoc is an open source tool for IT teams to share documents online. ShowDoc is vulnerable to cross-site request forgery, which stems from the lack of effective filtering and restriction of cookies set in the software’s UserController.class.php, and can be exploited by attackers to cause cross-site request forgery.
CPE | Name | Operator | Version |
---|---|---|---|
showdoc showdoc | le | 2.9.12 |