Vulnerability Database

Published: Jun 13, 2018
Updated: Nov 9, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-12354" target="_blank" rel="noopener"> CVE-2018-12354
Severity: Medium
Exploit:

308,820

Total vulnerabilities in the database

Knowage (formerly SpagoBI) 6.1.1 allows CSRF via every form, as demonstrated by a /knowage/restful-services/2.0/analyticalDrivers/ POST request.

CVSS v2:

CWEs:

Software	From	Fixed in
knowage-suite / knowage	6.1.1	6.1.1.x

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.