CSRF Vulnerability in CyberPower PowerPanel Business Edition 3.4.0 Agent/Center Component

CSRF Vulnerability in CyberPower PowerPanel Business Edition 3.4.0 Agent/Center Component

CVE-2019-13071 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

CSRF in the Agent/Center component of CyberPower PowerPanel Business Edition 3.4.0 allows an attacker to submit POST requests to any forms in the web application. This can be exploited by tricking an authenticated user into visiting an attacker controlled web page.

Learn more about our Web App Pen Testing.