Vulnerabilities

CVE-2012-5450

by Fred · 03/12/2012

Cross-site request forgery (CSRF) vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMSMS) 1.11.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that delete arbitrary files via the deld parameter.

Date published : 2012-12-03

http://archives.neohapsis.com/archives/bugtraq/2012-11/0035.html

http://forum.cmsmadesimple.org/viewtopic.php?f=1&t=63545

Similar

Tags: Cybersecurity Alert