CVE-2016-7507

Опубликовано: 19 июл. 2017

Источник: debian

EPSS Низкий

Описание

Cross-Site Request Forgery (CSRF) vulnerability in GLPI 0.90.4 allows remote authenticated attackers to submit a request that could lead to the creation of an admin account in the application.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
glpi	removed			package

Примечания

Only supported behind an authenticated HTTP zone

EPSS

Процентиль: 43%

0.00207

Низкий

Связанные уязвимости

CVE-2016-7507

CVSS3: 8

ubuntu

больше 8 лет назад

Cross-Site Request Forgery (CSRF) vulnerability in GLPI 0.90.4 allows remote authenticated attackers to submit a request that could lead to the creation of an admin account in the application.

CVE-2016-7507

CVSS3: 8

nvd

больше 8 лет назад

Cross-Site Request Forgery (CSRF) vulnerability in GLPI 0.90.4 allows remote authenticated attackers to submit a request that could lead to the creation of an admin account in the application.

GHSA-q8q2-v69p-mpm8

CVSS3: 8

github

больше 3 лет назад

Cross-Site Request Forgery (CSRF) vulnerability in GLPI 0.90.4 allows remote authenticated attackers to submit a request that could lead to the creation of an admin account in the application.

EPSS

Процентиль: 43%

0.00207

Низкий