exploitDog

GHSA-p26p-v9m6-4g6h

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in eZOE flash player in eZ Publish 4.1 through 4.6 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Cross-site request forgery (CSRF) vulnerability in eZOE flash player in eZ Publish 4.1 through 4.6 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Ссылки

EPSS

Процентиль: 35%

0.00142

Низкий

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2012-4053

nvd

больше 13 лет назад

Cross-site request forgery (CSRF) vulnerability in eZOE flash player in eZ Publish 4.1 through 4.6 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

EPSS

Процентиль: 35%

0.00142

Низкий

CVE ID

Дефекты

CWE-352