Medium severity4.3NVD Advisory· Published Dec 14, 2021· Updated Jun 17, 2026
CVE-2021-44942
CVE-2021-44942
Description
glFusion CMS 1.7.9 is affected by a Cross Site Request Forgery (CSRF) vulnerability in /public_html/admin/plugins/bad_behavior2/blacklist.php. Using the CSRF vulnerability to trick the administrator to click, an attacker can add a blacklist.
Affected products
2- glFusion/glFusion CMSdescription
Patches
Vulnerability mechanics
References
1- github.com/glFusion/glfusion/issues/486nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.