exploitDog

GHSA-77p7-xmff-w3pm

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

A cross-site request forgery (CSRF) vulnerability in mod/user/act_user.php in Garfield Petshop through 2020-10-01 allows remote attackers to hijack the authentication of administrators for requests that create new administrative accounts.

A cross-site request forgery (CSRF) vulnerability in mod/user/act_user.php in Garfield Petshop through 2020-10-01 allows remote attackers to hijack the authentication of administrators for requests that create new administrative accounts.

Ссылки

EPSS

Процентиль: 33%

0.00133

Низкий

CVE ID

Связанные уязвимости

CVE-2020-26522

CVSS3: 8.8

nvd

больше 5 лет назад

A cross-site request forgery (CSRF) vulnerability in mod/user/act_user.php in Garfield Petshop through 2020-10-01 allows remote attackers to hijack the authentication of administrators for requests that create new administrative accounts.

EPSS

Процентиль: 33%

0.00133

Низкий

CVE ID