Cross Site Request Forgery vulnerability in diskoverdata diskover-community v.2.3.5. and before allows a remote attacker to escalate privileges and obtain sensi…

Cross Site Request Forgery vulnerability affects diskoverdata diskover-community version 2.3.5 and earlier versions. The vulnerability exists in the public/settings_process.php file and allows remote attackers to escalate privileges and obtain sensitive information. This CSRF flaw can be exploited by tricking authenticated users into performing unintended actions. The vulnerability impacts the security of diskover-community installations by potentially allowing unauthorized access to sensitive data and system privileges.