exploitDog

GHSA-g86m-mf35-6xf2

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses.

Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses.

Ссылки

EPSS

Процентиль: 28%

0.00099

Низкий

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2009-4905

nvd

больше 15 лет назад

Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses.

EPSS

Процентиль: 28%

0.00099

Низкий

CVE ID

Дефекты

CWE-352