Security Patch 1 for Wolf CMS 0.7.5
Users of Wolf CMS 0.7.5 are advised to patch their systems with the SP1 (Security Patch) patch. You can get the patch from the download page
Risk level – Moderate.
Description – A number of CSRF vulnerabilities were reported and fixed which could allow a remote attacker to abuse certain Wolf CMS functions by manipulating the URL. Exploiting these vulnerabilities depend on the attacker first acquiring a valid session from a user with administrative privileges.
Note – Some users might encounter a message “This plugin CANNOT be enabled! It requires Wolf version 0.7.5.” with some third party plugins for 0.7.5-SP1. If you encounter this message, please change the CMS_VERSION variable in index.php back to “0.7.5”.
— Martijn
