CVE-2018-14958

An issue was discovered in WeaselCMS v0.3.5. CSRF can update the website settings (such as the theme, title, and description) via index.php.
References
Link Resource
https://github.com/alterebro/WeaselCMS/issues/6 Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:weaselcms_project:weaselcms:0.3.5:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-08-05 19:29

Updated : 2023-12-10 12:44


NVD link : CVE-2018-14958

Mitre link : CVE-2018-14958

CVE.ORG link : CVE-2018-14958


JSON object : View

Products Affected

weaselcms_project

  • weaselcms
CWE
CWE-352

Cross-Site Request Forgery (CSRF)