First published: Thu Feb 07 2019(Updated: )
A CSRF vulnerability was found in PbootCMS v1.3.6 that can delete users via an admin.php/User/del/ucode/ URI.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Pbootcms Pbootcms | =1.3.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this CSRF vulnerability is CVE-2019-7570.
The severity level of CVE-2019-7570 is medium (6.5).
The CSRF vulnerability in PbootCMS v1.3.6 can be exploited to delete users via the URI admin.php/User/del/ucode/.
The CSRF vulnerability affects PbootCMS version 1.3.6.
Yes, it is recommended to update to a patched version of PbootCMS to mitigate the CSRF vulnerability.