Anchor CMS v0.12.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component anchor/routes/posts.php. This vulnerability allows attackers to arbitrarily delete posts.
CPE | Name | Operator | Version |
---|---|---|---|
anchor-cms | eq | 0.8.2 | |
anchor-cms | eq | 0.9.1 | |
anchor-cms | eq | 0.12.1 | |
anchor-cms | eq | 0.12 | |
anchor-cms | eq | 0.9.3-b | |
anchor-cms | eq | 0.4 | |
anchor-cms | eq | 0.9 | |
anchor-cms | eq | 0.12.3 | |
anchor-cms | eq | 0.5 | |
anchor-cms | eq | 0.9.3-a |