Cross-Site Request Forgery due to missing or incorrect nonce validation on an unknown function. This makes it possible for unauthenticated attackers to perform an unknown action granted they can trick a site administrator into performing an action such as clicking on a link. The impact of this vulnerability is unknown.
This vulnerability affects the following application versions:
- Website Builder by SeedProd 6.0.8
- Website Builder by SeedProd 6.0.8.1
- Website Builder by SeedProd 6.0.8.2
- Website Builder by SeedProd 6.0.8.3
- Website Builder by SeedProd 6.0.8.4
- Website Builder by SeedProd 6.0.8.5
- Website Builder by SeedProd 6.0.9.0
- Website Builder by SeedProd 6.0.10.1
- Website Builder by SeedProd 6.0.11.1
- Website Builder by SeedProd 6.2.0
- Website Builder by SeedProd 6.2.1
- Website Builder by SeedProd 6.2.2
- Website Builder by SeedProd 6.2.3
- Website Builder by SeedProd 6.2.4
- Website Builder by SeedProd 6.2.5
- Website Builder by SeedProd 6.6.0
- Website Builder by SeedProd 6.9.0.8
- Website Builder by SeedProd 6.10.0
- Website Builder by SeedProd 6.12.0
- Website Builder by SeedProd 6.12.2
- Website Builder by SeedProd 6.13.0
- Website Builder by SeedProd 6.13.1
- Website Builder by SeedProd 6.15.3
- Website Builder by SeedProd 6.15.4
- Website Builder by SeedProd 6.15.6
- Website Builder by SeedProd 6.15.7
- Website Builder by SeedProd 6.15.13.1
- Website Builder by SeedProd 6.15.15.3
- Website Builder by SeedProd 6.15.18
- Website Builder by SeedProd 6.15.19
- Website Builder by SeedProd 6.15.20
- Website Builder by SeedProd 6.15.21
- Website Builder by SeedProd 6.15.22
- Website Builder by SeedProd 6.15.23
- Website Builder by SeedProd 6.17.4
- Website Builder by SeedProd 6.18.4
- Website Builder by SeedProd 6.18.5
- Website Builder by SeedProd 6.18.9