CVE-2023-37650 (cockpit)

A Cross-Site Request Forgery (CSRF) in the Admin portal of Cockpit CMS v2.5.2 allows attackers to execute arbitrary Administrator commands.

admin attackers cms cockpit cross-site cross-site request forgery csrf cve forgery portal request