EPSS
Percentile
52.5%
umbracocms is vulnerable to cross-site request forgery (CSRF) attacks. The library does not have any protections against csrf attacks in the ajax headers, allowing a malicios user to conduct CSRF attacks.
issues.umbraco.org/issue/U4-7459
github.com/umbraco/Umbraco-CMS/commit/18c3345e47663a358a042652e697b988d6a380eb