Unrated severityNVD Advisory· Published Jun 13, 2018· Updated Aug 5, 2024
CVE-2018-12354
CVE-2018-12354
Description
Knowage (formerly SpagoBI) 6.1.1 allows CSRF via every form, as demonstrated by a /knowage/restful-services/2.0/analyticalDrivers/ POST request.
Affected products
2- Range: =6.1.1
- Range: =6.1.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- medium.com/stolabs/security-issue-on-knowage-spagobi-ec539a68e55mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.