VYPR
Medium severity6.5NVD Advisory· Published Jun 10, 2019· Updated Jun 17, 2026

CVE-2019-11517

CVE-2019-11517

Description

WampServer before 3.1.9 has CSRF in add_vhost.php because the synchronizer pattern implemented as remediation of CVE-2018-8817 was incomplete. An attacker could add/delete any vhosts without the consent of the owner.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.