anchorcms/anchor-cms is vulnerable to cross-site request forgery. The vulnerability exists because the token is not checked when deleting the posts in posts.php
which allows an attacker to arbitrarily delete the posts.
CPE | Name | Operator | Version |
---|---|---|---|
anchorcms/anchor-cms | eq | 0.12.7 | |
anchorcms/anchor-cms | eq | 0.12.7 |