Security Advisory

CVE-2019-16059

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-09-06 18:02:36

Last updated 2024-08-05 01:03:32

Assigner mitre

State PUBLISHED

Description

Sentrifugo 3.2 lacks CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code at index.php/dashboard/viewprofile via a crafted HTML page.

← Browse all CVEs View on cve.org ↗