Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-282h-wh7g-68c6

Опубликовано: 14 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in ajax.php in Cerb before 7.0.4 allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via a saveWorkerPeek action.

Cross-site request forgery (CSRF) vulnerability in ajax.php in Cerb before 7.0.4 allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via a saveWorkerPeek action.

Ссылки

EPSS

Процентиль: 90%
0.05944
Низкий

CVE ID

CVE-2015-6545

Дефекты

CWE-352

Связанные уязвимости

nvd логотип

CVE-2015-6545

nvd
почти 10 лет назад

Cross-site request forgery (CSRF) vulnerability in ajax.php in Cerb before 7.0.4 allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via a saveWorkerPeek action.

EPSS

Процентиль: 90%
0.05944
Низкий

CVE ID

CVE-2015-6545

Дефекты

CWE-352