Back to search
CVE-2019-11517
Published: Jun 10, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
WampServer before 3.1.9 has CSRF in add_vhost.php because the synchronizer pattern implemented as remediation of CVE-2018-8817 was incomplete. An attacker could add/delete any vhosts without the consent of the owner.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20190610 CVE-2019-11517: CSRF in Wampserver 3.1.4-3.1.8
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now