← Back to CVE List
CVE-2020-36389
Published:
2021-06-17T19:15Z
Last Modified:
2024-11-21T05:29Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
In CiviCRM before 5.28.1 and CiviCRM ESR before 5.27.5 ESR, the CKEditor configuration form allows CSRF. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt