Launch Week Day 1: Announcing Security Design Review
Start for Free
HIGH 8.8 NuGet

Umbraco CMS vulnerable to CSRF

GHSA-5f6p-4hxq-rjxm · CVE-2015-8814

Published · Modified

Description

Umbraco before 7.4.0 allows remote attackers to bypass anti-forgery security measures and conduct cross-site request forgery (CSRF) attacks as demonstrated by editing user account information in the templates.asmx.cs file.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes