CSRF Vulnerability in Knowledge Versions Prior to v1.7.0 Allows Remote Authentication Hijacking
CVE-2017-2097 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Cross-site request forgery (CSRF) vulnerability in Knowledge versions prior to v1.7.0 allows remote attackers to hijack the authentication of administrators via unspecified vectors.
Learn more about our Web Application Penetration Testing UK.