CVE-2021-44942
14.12.2021, 21:15
glFusion CMS 1.7.9 is affected by a Cross Site Request Forgery (CSRF) vulnerability in /public_html/admin/plugins/bad_behavior2/blacklist.php. Using the CSRF vulnerability to trick the administrator to click, an attacker can add a blacklist.
| Vendor | Product | Version |
|---|---|---|
| glfusion | glfusion | 1.7.9 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration