CVE-2019-16059 - Sapplica Sentrifugo
Critical 8.8
Sentrifugo 3.2 lacks CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code at index.php/dashboard/viewprofile via a crafted HTML page.
Affected software
Sapplica Sentrifugo