CVE-2026-45430
HIGH
NVD
CVSS Score
7.1
Severity
HIGH
Published
May 12, 2026
Vendor
unknown
Description
The Salesforce module before 1.x-1.0.1 for Backdrop CMS does not properly use a random state parameter to protect the authorization flow against CSRF attacks.