Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-4v57-p22c-8frv

Опубликовано: 17 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in ImageCMS before 4.2 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the q parameter, related to CVE-2012-6290.

Cross-site request forgery (CSRF) vulnerability in ImageCMS before 4.2 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the q parameter, related to CVE-2012-6290.

Ссылки

EPSS

Процентиль: 50%
0.00268
Низкий

CVE ID

CVE-2013-7334

Дефекты

CWE-352

Связанные уязвимости

nvd логотип

CVE-2013-7334

nvd
почти 12 лет назад

Cross-site request forgery (CSRF) vulnerability in ImageCMS before 4.2 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the q parameter, related to CVE-2012-6290.

EPSS

Процентиль: 50%
0.00268
Низкий

CVE ID

CVE-2013-7334

Дефекты

CWE-352