exploitDog

GHSA-3jj9-9287-pj45

Опубликовано: 16 дек. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Cross-Site Request Forgery (CSRF) vulnerability in Pearlbells Flash News / Post (Responsive) allows Privilege Escalation.This issue affects Flash News / Post (Responsive): from n/a through 4.1.

Cross-Site Request Forgery (CSRF) vulnerability in Pearlbells Flash News / Post (Responsive) allows Privilege Escalation.This issue affects Flash News / Post (Responsive): from n/a through 4.1.

Ссылки

EPSS

Процентиль: 51%

0.0028

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2024-56012

CVSS3: 9.8

nvd

около 1 года назад

Cross-Site Request Forgery (CSRF) vulnerability in Pearlbells Flash News / Post (Responsive), Pearlbells Post Title (TypeWriter) allows Privilege Escalation.This issue affects Flash News / Post (Responsive): from n/a through 4.1; Post Title (TypeWriter): from n/a through 4.1.

EPSS

Процентиль: 51%

0.0028

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-352