Cross-site request forgery (CSRF) vulnerability in index.php in ProjectPier 0.8 and previous versions allows remote malicious users to perform actions as an administrator via the query string, as demonstrated by a delete project action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
projectpier projectpier |