CVE-2018-15539
Agentejo Cockpit (Cockpit CMS) is affected by CVE-2018-15539 due to a lack of anti-CSRF protection. Multiple connected sources confirm a CSRF vulnerability that enables unauthorized actions such as changing API tokens and passwords. The CNVD entry explicitly notes a CSRF vulnerability in Cockpit ...