Vulnerabilities

CVE-2019-18346

by Fred · 04/12/2019

A CSRF issue was discovered in DAViCal through 1.1.8. If an authenticated user visits an attacker-controlled webpage, the attacker can send arbitrary requests in the name of the user to the application. If the attacked user is an administrator, the attacker could for example add a new admin user.

Date published : 2019-12-04

https://seclists.org/bugtraq/2019/Dec/30

https://www.debian.org/security/2019/dsa-4582

Similar

Tags: Cybersecurity Alert