Security Advisory

CVE-2012-5450

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-12-03 21:00:00

Last updated 2024-08-06 21:05:47

Assigner mitre

State PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMSMS) 1.11.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that delete arbitrary files via the deld parameter.

← Browse all CVEs View on cve.org ↗