CVE-2018-19829: CSRF
First published: Tue Dec 18 2018(Updated: )
Artica Integria IMS 5.0.83 has CSRF in godmode/usuarios/lista_usuarios, resulting in the ability to delete an arbitrary user when the ID number is known.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Artica Integria IMS | =5.0.83 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-19829?
CVE-2018-19829 is a Cross-Site Request Forgery (CSRF) vulnerability in Artica Integria IMS 5.0.83.
What is the severity of CVE-2018-19829?
CVE-2018-19829 has a severity rating of medium, with a CVSS score of 6.5.
How does CVE-2018-19829 impact Artica Integria IMS?
CVE-2018-19829 allows an attacker to delete an arbitrary user in Artica Integria IMS 5.0.83 if the ID number is known.
What is Cross-Site Request Forgery (CSRF)?
Cross-Site Request Forgery (CSRF) is an attack that tricks the victim into submitting a malicious request that the website accepts, resulting in unauthorized actions.
How can I fix the CSRF vulnerability in Artica Integria IMS 5.0.83?
To fix the CSRF vulnerability in Artica Integria IMS 5.0.83, apply the necessary patches or updates provided by the vendor.
- collector/nvd-index
- agent/references
- agent/severity
- agent/description
- agent/event
- agent/weakness
- agent/author
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/artica
- canonical/artica integria ims
- version/artica integria ims/5.0.83