Vulnerabilities > Alkacon > High

DATE CVE VULNERABILITY TITLE RISK
2018-03-20 CVE-2018-8811 Cross-Site Request Forgery (CSRF) vulnerability in Alkacon Opencms 10.5.3
Cross-site request forgery (CSRF) vulnerability in system/workplace/admin/accounts/user_role.jsp in OpenCMS 10.5.3 allows remote attackers to hijack the authentication of administrative users for requests that perform privilege escalation.
network
low complexity
alkacon CWE-352
8.8