Security Advisory

CVE-2021-47754

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-15 15:52:03

Last updated 2026-04-07 14:05:57

Assigner VulnCheck

State PUBLISHED

Description

Arunna 1.0.0 contains a cross-site request forgery vulnerability that allows attackers to manipulate user profile settings without authentication. Attackers can craft a malicious form to change user details, including passwords, email, and administrative privileges by tricking authenticated users into submitting the form.

← Browse all CVEs View on cve.org ↗