unlcms/UNL-CMS

Releases98

Frequency3 weeks 2 days

Last Release over 9 years ago

Stars4

Drupal 7 implementation at the University of Nebraska–Lincoln

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-17069 ↗	Sep 15, 2018Saturday, 15 September 2018, 21:29	—	4.3 MEDIUM
An issue was discovered in UNL-CMS 7.59. A CSRF attack can create new content via ?q=node%2Fadd%2Farticle&render=overlay&render=overlay.
CVE-2018-17070 ↗	Sep 15, 2018Saturday, 15 September 2018, 21:29	—	4.3 MEDIUM
An issue was discovered in UNL-CMS 7.59. A CSRF attack can update the website settings via ?q=admin%2Fconfig%2Fsystem%2Fsite-information&render=overlay&render=overlay.