CVE-2020-28858

OpenAsset Digital Asset Management (DAM) through 12.0.19 does not correctly verify whether a request made to the application was intentionally made by the user, allowing for cross-site request forgery attacks on all user functions. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt