exploitDog

GHSA-5xrh-p72x-43gj

Опубликовано: 09 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Cross Site Request Forgery (CSRF) vulnerability in MooSocial v.3.1.8 allows a remote attacker to execute arbitrary code and obtain sensitive information via the admin Password Change Function.

Cross Site Request Forgery (CSRF) vulnerability in MooSocial v.3.1.8 allows a remote attacker to execute arbitrary code and obtain sensitive information via the admin Password Change Function.

Ссылки

EPSS

Процентиль: 87%

0.03316

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2023-44811

CVSS3: 8.8

nvd

больше 2 лет назад

Cross Site Request Forgery (CSRF) vulnerability in MooSocial v.3.1.8 allows a remote attacker to execute arbitrary code and obtain sensitive information via the admin Password Change Function.

EPSS

Процентиль: 87%

0.03316

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352