CSRF Vulnerabilities in BigTree CMS through 4.2.18

CSRF Vulnerabilities in BigTree CMS through 4.2.18

CVE-2017-9379 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Multiple CSRF issues exist in BigTree CMS through 4.2.18 - the clear parameter to core\admin\modules\dashboard\vitals-statistics\404\clear.php and the from or to parameter to core\admin\modules\dashboard\vitals-statistics\404\create-301.php.

Learn more about our Cms Pen Testing.