Skip to main content

Bolt CVE-2019-10874

HIGH
Cross-Site Request Forgery (CSRF) (CWE-352)
2019-04-05 cve@mitre.org
8.8
CVSS 3.0 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Apr 05, 2019 - 05:29 nvd
HIGH 8.8

DescriptionNVD

Cross Site Request Forgery (CSRF) in the bolt/upload File Upload feature in Bolt CMS 3.6.6 allows remote attackers to execute arbitrary code by uploading a JavaScript file to include executable extensions in the file/edit/config/config.yml configuration file.

AnalysisAI

Cross Site Request Forgery (CSRF) in the bolt/upload File Upload feature in Bolt CMS 3.6.6 allows remote attackers to execute arbitrary code by uploading a JavaScript file to include executable. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

This vulnerability is classified as Cross-Site Request Forgery (CSRF) (CWE-352), which allows attackers to trick authenticated users into performing unintended actions. Cross Site Request Forgery (CSRF) in the bolt/upload File Upload feature in Bolt CMS 3.6.6 allows remote attackers to execute arbitrary code by uploading a JavaScript file to include executable extensions in the file/edit/config/config.yml configuration file. Affected products include: Boltcms Bolt.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Implement anti-CSRF tokens, validate Origin/Referer headers, use SameSite cookie attribute.

More in Bolt

View all
CVE-2025-34086 HIGH POC
8.8 Jul 03

Pandora FMS monitoring platform version 7.0NG and earlier contains an authenticated command injection in the net_tools.p

CVE-2015-7309 MEDIUM POC
6.5 Sep 22

The theme editor in Bolt before 2.2.5 does not check the file extension when renaming files, which allows remote authent

CVE-2019-9185 HIGH POC
8.8 Mar 07

Controller/Async/FilesystemManager.php in the filemanager in Bolt before 3.6.5 allows remote attackers to execute arbitr

CVE-2020-4041 MEDIUM POC
6.1 Jun 08

In Bolt CMS before version 3.7.1, the filename of uploaded files was vulnerable to stored XSS. Rated medium severity (CV

CVE-2019-9553 MEDIUM POC
6.1 Dec 31

Bolt 3.6.4 has XSS via the slug, teaser, or title parameter to editcontent/pages, a related issue to CVE-2017-11128 and

CVE-2019-20058 MEDIUM POC
6.1 Dec 29

Bolt 3.7.0, if Symfony Web Profiler is used, allows XSS because unsanitized search?search= input is shown on the _profil

CVE-2023-5214 CRITICAL
9.8 Oct 06

In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified. Rated critical severity (CVSS 9.8

CVE-2017-11128 MEDIUM POC
5.4 Jul 17

Bolt CMS 3.2.14 allows stored XSS via text input, as demonstrated by the Title field of a New Entry. Rated medium severi

CVE-2017-11127 MEDIUM POC
5.4 Jul 17

Bolt CMS 3.2.14 allows stored XSS by uploading an SVG document with a "Content-Type: image/svg+xml" header. Rated medium

CVE-2024-7300 MEDIUM POC
5.3 Jul 31

A vulnerability classified as problematic has been found in Bolt CMS 3.7.1. Rated medium severity (CVSS 5.3), this vulne

CVE-2024-7299 MEDIUM POC
5.3 Jul 31

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Bolt CMS 3.7.1. Rated medium severity (CVSS 5.3), this vuln

CVE-2022-31321 CRITICAL
9.1 Aug 01

The foldername parameter in Bolt 5.1.7 was discovered to have incorrect input validation, allowing attackers to perform

Share

CVE-2019-10874 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy