Share:

CVE-2020-26033 - Zammad Zammad

December 28, 2020

Moderate 5.4

An issue was discovered in Zammad before 3.4.1. The Tag and Link REST API endpoints (for add and delete) lack a CSRF token check.

Affected software

Zammad Zammad

Reference links

https://zammad.com/news/security-advisory-zaa-2020-17

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.