Description
A cross site request forgery (CSRF) vulnerability in the configure.html component of Ponzu 0.11.0 allows attackers to change user and administrator credentials, and add or delete administrator accounts.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2020-16866 | A cross site request forgery (CSRF) vulnerability in the configure.html component of Ponzu 0.11.0 allows attackers to change user and administrator credentials, and add or delete administrator accounts. |
References
| Link | Providers |
|---|---|
| https://github.com/ponzu-cms/ponzu/issues/352 |
|
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-04T15:05:11.840Z
Reserved: 2020-08-13T00:00:00.000Z
Link: CVE-2020-24130
No data.
Status : Modified
Published: 2021-08-20T20:15:06.947
Modified: 2026-06-17T03:05:13.940
Link: CVE-2020-24130
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-352
Cross-Site Request Forgery (CSRF)
EUVD