2 matches found
CVE-2021-35491
creationtimestamp| type| source ---|---|--- 2021-10-05 20:30:37+00:00| seen| https://t.me/cibsecurity/29995...
CVE-2021-35491
CVE-2021-35491 affects Wowza Streaming Engine prior to 4.8.14. A CSRF vulnerability allows remote attackers to delete a user account via GET /enginemanager/server/user/delete.htm with a userName parameter. The issue arises because the application does not implement a CSRF token for the GET reques...