Lucene search

CVE-2019-9603

🗓️ 06 Mar 2019 19:00:29Reported by mitreType

cve🔗 web.nvd.nist.gov👁 41 Views🌐 WEB

MiniCMS 1.10 allows CSRF to delete article

Reporter	Title	Published	Views	Family All 9
NVD	CVE-2019-9603	6 Mar 201919:29	–	nvd
NVD	CVE-2018-18891	1 Nov 201801:29	–	nvd
OSV	CVE-2019-9603	6 Mar 201919:29	–	osv
OSV	CVE-2018-18891	1 Nov 201801:29	–	osv
Prion	Cross site request forgery (csrf)	6 Mar 201919:29	–	prion
Prion	Authentication flaw	1 Nov 201801:29	–	prion
Cvelist	CVE-2019-9603	6 Mar 201919:00	–	cvelist
Cvelist	CVE-2018-18891	1 Nov 201801:00	–	cvelist
CVE	CVE-2018-18891	1 Nov 201801:29	–	cve

Nvd

Node

1234n minicmsMatch1.10

Source	Link
github	www.github.com/bg5sbk/MiniCMS/issues/29

Parameter	Position	Path	Description	CWE
state	query param	/mc-admin/post.php	CSRF vulnerability allows unauthorized deletion of articles.	CWE-352
delete	query param	/mc-admin/post.php	CSRF vulnerability allows unauthorized deletion of articles.	CWE-352

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Mar 2019 19:29Current

6.8Medium risk

Vulners AI Score6.8

CVSS25.8

CVSS36.5

EPSS0.00168

CWE-352