CVE-2017-10681

Опубликовано: 29 июн. 2017

Источник: debian

EPSS Низкий

Описание

Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to unlock albums via a crafted request.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
piwigo	removed			package

EPSS

Процентиль: 39%

0.00179

Низкий

Связанные уязвимости

CVE-2017-10681

CVSS3: 8.8

nvd

больше 8 лет назад

Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to unlock albums via a crafted request.

GHSA-75x3-rp8w-rwm7

CVSS3: 8.8

github

больше 3 лет назад

Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to unlock albums via a crafted request.

EPSS

Процентиль: 39%

0.00179

Низкий