Lucene search
HistoryAug 24, 2022 - 8:15 p.m.
CVE-2018-14519
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
0.001 Low
EPSS
Percentile
41.5%
An issue was discovered in Kirby 2.5.12. The delete page functionality suffers from a CSRF flaw. A remote attacker can craft a malicious CSRF page and force the user to delete a page.
Affected configurations
Node
getkirbykirbyMatch2.5.12
Related
prion
prion
Cross site request forgery (csrf)
2022-08-24 20:15:00
osv
osv
CVE-2018-14519
2022-08-24 20:15:08
Kirby CMS 2.5.12 Cross-site Request Forgery
2022-08-25 00:00:25
veracode
veracode
Cross-Site Request Forgery
2022-08-25 06:39:48
github
github
Kirby CMS 2.5.12 Cross-site Request Forgery
2022-08-25 00:00:25
cve
cve
CVE-2018-14519
2022-08-24 20:15:08
cvelist
cvelist
CVE-2018-14519
2022-08-24 19:43:11
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
0.001 Low
EPSS
Percentile
41.5%
Related for NVD:CVE-2018-14519