CVE-2016-6578

CVE-2016-6578: CodeLathe FileCloud, version 13.0.0.32841 and earlier, is vulnerable to cross-site request forgery (CSRF)

Vendor Codelathe
Product FileCloud
Weakness CWE-352 · CSRF
Published July 13, 2018
Last update August 6, 2024

CVSS base score

What the vulnerability does

01Description

CodeLathe FileCloud, version 13.0.0.32841 and earlier, contains a global cross-site request forgery (CSRF) vulnerability. An attacker can perform actions with the same permissions as a victim user, provided the victim has an active session and is induced to trigger the malicious request.

Key dates

02Disclosure timeline

July 13, 2018 CVE published
August 6, 2024 Record updated

Related vulnerabilities

04Related CVE