CodeLathe FileCloud, version 13.0.0.32841 and earlier, contains a global cross-site request forgery (CSRF) vulnerability. An attacker can perform actions with the same permissions as a victim user, provided the victim has an active session and is induced to trigger the malicious request.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2018-07-13T20:00:00
Updated: 2024-08-06T01:36:27.966Z
Reserved: 2016-08-03T00:00:00
Link: CVE-2016-6578
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-07-13T20:29:01.237
Modified: 2022-04-22T19:52:33.750
Link: CVE-2016-6578
Redhat
No data.