High severity8.8NVD Advisory· Published Mar 2, 2021· Updated Jun 17, 2026
CVE-2021-27885
CVE-2021-27885
Description
usersettings.php in e107 through 2.3.0 lacks a certain e_TOKEN protection mechanism.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- e107/e107description
Patches
Vulnerability mechanics
References
3- github.com/e107inc/e107/commit/d9efdb9b5f424b4996c276e754a380a5e251f472nvdPatchThird Party Advisory
- packetstormsecurity.com/files/161651/e107-CMS-2.3.0-Cross-Site-Request-Forgery.htmlnvdThird Party Advisory
- github.com/e107inc/e107/releasesnvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.