First published: Fri May 10 2019(Updated: )
Metinfo 5.3.18 is affected by: Cross Site Request Forgery (CSRF). The impact is: Information Disclosure (remote). The component is: admin/interface/online/delete.php. The attack vector is: The administrator clicks on the malicious link in the login state.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Metinfo Metinfo | =5.3.18 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2017-12789 is high.
The impact of CVE-2017-12789 is information disclosure (remote).
The admin/interface/online/delete.php component of Metinfo 5.3.18 is affected by CVE-2017-12789.
The attack vector of CVE-2017-12789 is when the administrator clicks on a malicious link in the login state.
To fix CVE-2017-12789, update Metinfo to a version that is not affected by this vulnerability.