CVE-2020-16610
CVE-2020-16610 affects Hoosk CMS (CodeIgniter-based) prior to version 1.7.2. A CSRF flaw allows an attacker to induce an authenticated admin to visit a malicious page, resulting in accounts being deleted without the admin’s consent. CVSS v3.1 base score 4.3 (Medium); attack vector: Network; privi...