CVE-2022-25576

Published
View on NVD ↗
CVSS v3
4.5
MEDIUM
CVSS v2
3.5
LOW
Affected
2
PROJECTS

Description

Anchor CMS v0.12.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component anchor/routes/posts.php. This vulnerability allows attackers to arbitrarily delete posts.

butterflyhack/anchorcms-0.12.7-CSRF
butterflyhack/anchorcms-0.12.7-CSRF
Vulnerability Analysis
GitHubGitHub
anchorcms/anchor-cms
anchorcms/anchor-cms
A lightweight blog CMS for PHP
GitHubGitHub
3.3K