CVE-2015-5081: django-cms CSRF Vulnerability
(updated )
Cross-site request forgery (CSRF) vulnerability in django CMS before 3.0.14, 3.1.x before 3.1.1 allows remote attackers to manipulate privileged users into performing unknown actions.
References
- github.com/advisories/GHSA-2pqc-gv8q-pvqv
- github.com/divio/django-cms/commit/f77cbc607d6e2a62e63287d37ad320109a2cc78a
- github.com/django-cms/django-cms/commit/f77cbc607d6e2a62e63287d37ad320109a2cc78a
- github.com/pypa/advisory-database/tree/main/vulns/django-cms/PYSEC-2017-11.yaml
- nvd.nist.gov/vuln/detail/CVE-2015-5081
- www.django-cms.org/en/blog/2015/06/27/311-3014-release
Detect and mitigate CVE-2015-5081 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →