CVE-2023-47350

https://notcve.org/view.php?id=CVE-2023-47350

22 Nov 2023 — Cross-Site Request Forgery (CSRF) vulnerability in SwiftyEdit Content Management System prior to v1.2.0, allows remote attackers to escalate privileges via the user password update functionality. SwiftyEdit Content Management System anterior a la versión 1.2.0 es vulnerable a la Cross-Site Request Forgery (CSRF). • https://github.com/SwiftyEdit/SwiftyEdit/commit/90a6f3df16cd1578b2827d7b2e073451f7ce4e47 • CWE-352: Cross-Site Request Forgery (CSRF) •