CVE-2020-15151
OpenMage LTS before 19.4.6 and 20.0.2 is affected by CVE-2020-15151, a timing-discrepancy/CSRF-related issue that lets attackers circumvent the fromkey protection in the Admin Interface, increasing CSRF surface. The underlying risk is an observable timing discrepancy that, if exploited, could byp...