Vulnerabilities > Ignitedcms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-06 | CVE-2020-18694 | Cross-Site Request Forgery (CSRF) vulnerability in Ignitedcms 1.0.0 Cross Site Request Forgery (CSRF) in IgnitedCMS v1.0 allows remote attackers to obtain sensitive information and gain privilege via the component "/admin/profile/save_profile". | 8.8 |
| 2019-07-06 | CVE-2019-13370 | Cross-Site Request Forgery (CSRF) vulnerability in Ignitedcms 1.0.0/1.0.1/20170219 index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator. | 8.8 |
| 2018-08-08 | CVE-2018-15203 | Cross-Site Request Forgery (CSRF) vulnerability in Ignitedcms 1.0.0/1.0.1/20170219 An issue was discovered in Ignited CMS through 2017-02-19. | 6.5 |