CVE-2015-6545

2015-09-03T13:59:02
ID CVE-2015-6545
Type cve
Reporter NVD
Modified 2018-10-09T15:57:53

Description

Cross-site request forgery (CSRF) vulnerability in ajax.php in Cerb before 7.0.4 allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via a saveWorkerPeek action.