Multiple CSRF issues exist in MicroPyramid Django CRM 0.2.1 via /change-password-by-admin/, /api/settings/add/, /cases/create/, /change-password-by-admin/, /comment/add/, /documents/1/view/, /documents/create/, /opportunities/create/, and /login/.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| django-crm(PyPI) | 0 | N/A | N/A |
CVSS Metrics
