An issue was discovered in fastadmin 1.0.0.20190705_beta. There is a public/admin/general.config/edit CSRF vulnerability, as demonstrated by resultant XSS via the row[name] parameter.
References
Link | Resource |
---|---|
https://github.com/Imanfeng/fastadmin/blob/master/README.md | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2019-10-10 12:15
Updated : 2024-02-28 17:28
NVD link : CVE-2019-17432
Mitre link : CVE-2019-17432
CVE.ORG link : CVE-2019-17432
JSON object : View
Products Affected
fastadmin
- fastadmin