CVE-2020-13231
Published
CVSS v3
6.5
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT
Description
In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for an admin email change.
In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for an admin email change.
GitHub