In mblog <= 3.5.0 there is a CSRF vulnerability in the background article management. The attacker constructs a CSRF load. Once the administrator clicks a malicious link, the article will be deleted.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/langhsu/mblog/issues/50 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-01-19T23:07:46
Updated: 2024-08-04T04:54:31.224Z
Reserved: 2022-01-03T00:00:00
Link: CVE-2021-46028
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-01-20T00:15:08.287
Modified: 2022-01-25T14:52:44.033
Link: CVE-2021-46028
Redhat
No data.