Concrete CMS is vulnerable to CSRF due to the lack of "State" parameter for external Concrete authentication service for users of Concrete who use the "out of the box" core OAuth.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2022-11-14T00:00:00
Updated: 2024-08-03T13:40:06.622Z
Reserved: 2022-10-24T00:00:00
Link: CVE-2022-43693

No data.

Status : Modified
Published: 2022-11-14T17:15:10.433
Modified: 2024-11-21T07:27:03.677
Link: CVE-2022-43693

No data.