Multiple CSRF Vulnerabilities in MicroPyramid Django CRM 0.2.1

Multiple CSRF Vulnerabilities in MicroPyramid Django CRM 0.2.1

CVE-2019-11457 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Multiple CSRF issues exist in MicroPyramid Django CRM 0.2.1 via /change-password-by-admin/, /api/settings/add/, /cases/create/, /change-password-by-admin/, /comment/add/, /documents/1/view/, /documents/create/, /opportunities/create/, and /login/.

Learn more about our Api Penetration Testing.