2 matches found
CVE-2022-25576
Anchor CMS v0.12.7 is affected by a Cross-Site Request Forgery (CSRF) in the component anchor/routes/posts.php that allows an attacker to arbitrarily delete posts. The root cause, as described across multiple entries (including HGSA/GHSA and CVE references), is a missing/ inadequate CSRF token va...
CVE-2022-25576
Anchor CMS v0.12.7 was discovered to contain a Cross-Site Request Forgery CSRF via the component anchor/routes/posts.php. This vulnerability allows attackers to arbitrarily delete posts...