First published: Wed Mar 15 2023(Updated: )
Cross-Site Request Forgery (CSRF) vulnerability in Cozmoslabs, Madalin Ungureanu, Antohe Cristian Client Portal – Private user pages and login plugin <= 1.1.8 versions.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
Cozmoslabs Client Portal | <1.1.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The CVE ID for this vulnerability is CVE-2023-25968.
The severity of CVE-2023-25968 is high with a severity value of 8.8.
The affected software for CVE-2023-25968 is Cozmoslabs Madalin Ungureanu Antohe Cristian Client Portal - Private user pages and login plugin <= 1.1.8 versions.
To fix CVE-2023-25968, upgrade the Cozmoslabs Madalin Ungureanu Antohe Cristian Client Portal - Private user pages and login plugin to version 1.1.9 or higher.
The CWE ID for CVE-2023-25968 is 352.