2 matches found
CVE-2016-1172
CVE-2016-1172 is a CSRF vulnerability in the baserCMS Recruit plugin prior to version 0.9.3 that can hijack administrator sessions. Multiple sources (NVD, CNVD, PRION, CVE list) corroborate the affected plugin and vulnerability description. CVSS‑3.0 base score is 8.8 (High) with NETWORK attack ve...
CVE-2016-1172
Cross-site request forgery CSRF vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to hijack the authentication of administrators...