exploitDog

GHSA-cmh5-jc3p-3x8f

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in index.php in ProjectPier 0.8 and earlier allows remote attackers to perform actions as an administrator via the query string, as demonstrated by a delete project action.

Cross-site request forgery (CSRF) vulnerability in index.php in ProjectPier 0.8 and earlier allows remote attackers to perform actions as an administrator via the query string, as demonstrated by a delete project action.

Ссылки

EPSS

Процентиль: 51%

0.0028

Низкий

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2008-5583

nvd

около 17 лет назад

Cross-site request forgery (CSRF) vulnerability in index.php in ProjectPier 0.8 and earlier allows remote attackers to perform actions as an administrator via the query string, as demonstrated by a delete project action.

EPSS

Процентиль: 51%

0.0028

Низкий

CVE ID

Дефекты

CWE-352