Security Advisory

CVE-2017-9365

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-06-02 05:04:00

Last updated 2024-08-05 17:02:44

Assigner mitre

State PUBLISHED

Description

CSRF exists in BigTree CMS through 4.2.18 with the force parameter to /admin/pages/revisions.php - for example: /admin/pages/revisions/1/?force=false. A page with id=1 can be unlocked.

← Browse all CVEs View on cve.org ↗