CVE-2022-24947

Опубликовано: 25 фев. 2022

Источник: debian

EPSS Низкий

Описание

Apache JSPWiki user preferences form is vulnerable to CSRF attacks, which can lead to account takeover. Apache JSPWiki users should upgrade to 2.11.2 or later.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jspwiki	removed			package

EPSS

Процентиль: 83%

0.01846

Низкий

Связанные уязвимости

CVE-2022-24947

CVSS3: 8.8

ubuntu

почти 4 года назад

Apache JSPWiki user preferences form is vulnerable to CSRF attacks, which can lead to account takeover. Apache JSPWiki users should upgrade to 2.11.2 or later.

CVE-2022-24947

CVSS3: 8.8

nvd

почти 4 года назад

Apache JSPWiki user preferences form is vulnerable to CSRF attacks, which can lead to account takeover. Apache JSPWiki users should upgrade to 2.11.2 or later.

GHSA-4284-x26r-4hhc

CVSS3: 8.8

github

почти 4 года назад

Cross Site Request Forgery in Apache JSPWiki

EPSS

Процентиль: 83%

0.01846

Низкий