Cross-site request forgery (CSRF) vulnerability in django CMS before 3.0.14, 3.1.x before 3.1.1 allows remote attackers to manipulate privileged users into performing unknown actions via unspecified vectors.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| django-cms(PyPI) | 0 | 3.0.14 | N/A |
| django-cms(PyPI) | 3.1.0b1 | 3.1.1 | N/A |
CVSS Metrics
