{"id":"CVE-2026-55741","summary":"Cotonti CSRF in admin.config.php allows unauthorized configuration changes","details":"Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to Cross-Site Request Forgery in the administration configuration handler. In system/admin/admin.config.php, the configuration update action ('a=update') processes POST data via cot_config_update_options() without calling cot_check_xg() to validate the anti-CSRF token (the 'x' parameter), unlike other admin handlers (e.g. admin.structure.php, admin.cache.php). A remote attacker who lures an authenticated administrator into visiting a malicious page can force the browser to submit a forged request that modifies arbitrary core, module, or plugin configuration options, which can be leveraged to weaken security or enable further compromise.","modified":"2026-07-08T08:11:33.604110041Z","published":"2026-06-18T06:04:19.527Z","database_specific":{"cwe_ids":["CWE-352"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/55xxx/CVE-2026-55741.json","cna_assigner":"TuranSec"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/55xxx/CVE-2026-55741.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-55741"},{"type":"PACKAGE","url":"https://github.com/Cotonti/Cotonti"},{"type":"ARTICLE","url":"https://github.com/Cotonti/Cotonti/blob/f43f1fc38ba4e02027786dad9dac1435c7c52b30/system/admin/admin.config.php#L55"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/cotonti/cotonti","events":[{"introduced":"0d554e939a315e7f7f18fba3ca1132b80c6a1adb"},{"last_affected":"0d554e939a315e7f7f18fba3ca1132b80c6a1adb"}],"database_specific":{"extracted_events":[{"introduced":"1.0.0"},{"last_affected":"1.0.0"}],"source":"AFFECTED_FIELD"}}],"versions":["1.0.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-55741.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}]}