Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in Test/WorkArea/DmsMenu/menuActions/MenuActions.aspx in Ektron Content Management System (CMS) before 9.10 SP1 (Build 9.1.0.184.1.120) allows remote attackers to hijack the authentication of content administrators for requests that delete content via a delete action.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ektron Content Management System 跨站请求伪造漏洞
Vulnerability Description
Ektron Content Management System(CMS)是美国Ektron公司的一套企业级Web内容管理系统(CMS)。该系统支持所见即所得编辑器、内容布局和拖拽操作等。 Ektron CMS 9.10 SP1(Build 9.1.0.184.1.120)之前版本的Test/WorkArea/DmsMenu/menuActions/MenuActions.aspx文件中存在跨站请求伪造漏洞。远程攻击者可通过执行删除操作利用该漏洞删除内容。
CVSS Information
N/A
Vulnerability Type
N/A