exploitDog

GHSA-6w4p-849q-7mr4

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in IPplan 4.91a allows remote attackers to hijack the authentication of administrators for requests that (1) change the password, (2) add users, or (3) delete users via unknown vectors.

Cross-site request forgery (CSRF) vulnerability in IPplan 4.91a allows remote attackers to hijack the authentication of administrators for requests that (1) change the password, (2) add users, or (3) delete users via unknown vectors.

Ссылки

EPSS

Процентиль: 35%

0.00142

Низкий

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2009-1733

nvd

больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in IPplan 4.91a allows remote attackers to hijack the authentication of administrators for requests that (1) change the password, (2) add users, or (3) delete users via unknown vectors.

CVE-2009-1733

debian

больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in IPplan 4.91a allows ...

EPSS

Процентиль: 35%

0.00142

Низкий

CVE ID

Дефекты

CWE-352