CSRF Vulnerabilities in Mautic 1.4.1: Unauthorized Deletion of Email Campaigns and Contacts

CVE-2017-8874 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Multiple cross-site request forgery (CSRF) vulnerabilities in Mautic 1.4.1 allow remote attackers to hijack the authentication of users for requests that (1) delete email campaigns or (2) delete contacts.

Learn more about our Contact.