MidnightBSD

Advisories for manageyourteam

CVE-2019-15496 MEDIUM

MyT Project Management 1.5.1 lacks CSRF protection and, for example, allows a user/create CSRF attack. This could lead to an attacker tricking the administrator into executing arbitrary code via a specially crafted HTML page.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
manageyourteam myt_project_management 1.5.1