4 matches found
CVE-2021-30224
Cross Site Request Forgery CSRF in Rukovoditel v2.8.3 allows attackers to create an admin user with an arbitrary credentials...
Cross site request forgery (csrf)
Cross Site Request Forgery CSRF in Rukovoditel v2.8.3 allows attackers to create an admin user with an arbitrary credentials...
CVE-2021-30224
The CVE-2021-30224 entry concerns Rukovoditel v2.8.3 vulnerable to Cross-Site Request Forgery (CSRF). The root cause is that the web application does not adequately verify request origin, allowing an attacker to create an admin user with arbitrary credentials. Affected software is Rukovoditel v2....
CVE-2021-30224
Cross Site Request Forgery CSRF in Rukovoditel v2.8.3 allows attackers to create an admin user with an arbitrary credentials...