CVE-2021-44942

Published
View on NVD ↗
CVSS v3
4.3
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT

Description

glFusion CMS 1.7.9 is affected by a Cross Site Request Forgery (CSRF) vulnerability in /public_html/admin/plugins/bad_behavior2/blacklist.php. Using the CSRF vulnerability to trick the administrator to click, an attacker can add a blacklist.

glFusion/glfusion
glFusion/glfusionUNAVAILABLE
glFusion CMS - Advanced Content Management with Style
GitHubGitHub
3