exploitDog

GHSA-cqh5-f823-cp7w

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in the Admin Control Panel (ACP) login in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Cross-site request forgery (CSRF) vulnerability in the Admin Control Panel (ACP) login in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Ссылки

EPSS

Процентиль: 32%

0.00126

Низкий

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2015-2334

nvd

почти 11 лет назад

Cross-site request forgery (CSRF) vulnerability in the Admin Control Panel (ACP) login in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

EPSS

Процентиль: 32%

0.00126

Низкий

CVE ID

Дефекты

CWE-352