exploitDog

GHSA-vg7q-4h76-hx2w

Опубликовано: 27 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

A Cross site request forgery (CSRF) vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert.

A Cross site request forgery (CSRF) vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert.

Ссылки

EPSS

Процентиль: 20%

0.00064

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2020-18418

CVSS3: 8.8

nvd

больше 2 лет назад

A Cross site request forgery (CSRF) vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert.

EPSS

Процентиль: 20%

0.00064

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352