2 matches found
CVE-2024-51991
October is a Content Management System CMS and web platform. A vulnerability in versions prior to 3.7.5 affects authenticated administrators with sites that have the media.cleanvectors configuration enabled. This configuration will sanitize SVG files uploaded using the media manager. This...
Cross-Site Request Forgery Vulnerability in Multiple NETGEAR Products (CNVD-2020-31321)
The NETGEAR R7500, among others, is a wireless router from NETGEAR. A cross-site request forgery vulnerability exists in a number of NETGEAR products. The vulnerability stems from a WEB application that does not adequately validate that a request is coming from a trusted user, and can be exploite...