CVE-2019-13183

Published July 7th, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

6.8

MEDIUM

Affected

1

PROJECT

Description

Flarum before 0.1.0-beta.9 allows CSRF against all POST endpoints, as demonstrated by changing admin settings.

flarum/framework

Simple forum software for building great communities.

GitHub

6.73K