CVE-2019-19987

An issue was discovered in Selesta Visual Access Manager (VAM) 4.15.0 through 4.29. It allows Cross-Site Request Forgery (CSRF) on any HTML form. An attacker can exploit the vulnerability to abuse functionalities such as change password, add user, add privilege, and so on.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:seling:visual_access_manager:*:*:*:*:*:*:*:*

Information

Published : 2020-02-26 08:15

Updated : 2020-02-27 06:54


NVD link : CVE-2019-19987

Mitre link : CVE-2019-19987


JSON object : View

CWE
CWE-352

Cross-Site Request Forgery (CSRF)

Advertisement

dedicated server usa

Products Affected

seling

  • visual_access_manager