First published: Thu Sep 09 2021(Updated: )
FUEL CMS 1.5.0 login.php contains a cross-site request forgery (CSRF) vulnerability
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
TheDayLightStudio Fuel CMS | =1.5.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-38721 is a cross-site request forgery (CSRF) vulnerability in FUEL CMS 1.5.0 login.php.
CVE-2021-38721 has a severity rating of 6.5, which is considered medium.
The affected software version is FUEL CMS 1.5.0.
CVE-2021-38721 can be exploited through cross-site request forgery (CSRF) attacks.
Yes, a fix for CVE-2021-38721 is available in the commit 6164cd794674d4d74da39f8b535ff588ab006e33 on the FUEL CMS GitHub repository.