VYPR
High severity8.8NVD Advisory· Published Aug 18, 2017· Updated Jun 17, 2026

CVE-2015-5081

CVE-2015-5081

Description

Cross-site request forgery (CSRF) vulnerability in django CMS before 3.0.14, 3.1.x before 3.1.1 allows remote attackers to manipulate privileged users into performing unknown actions via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
django-cmsPyPI
< 3.0.143.0.14
django-cmsPyPI
>= 3.1.0b1, < 3.1.13.1.1

Affected products

3
  • cpe:2.3:a:django-cms:django_cms:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:django-cms:django_cms:*:*:*:*:*:*:*:*range: <=3.0.13
    • cpe:2.3:a:django-cms:django_cms:3.1:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 3.0.14

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.