Описание
MaxWebPortal 1.30 allows remote attackers to perform unauthorized actions by modifying hidden form fields, such as the (1) news, (2) lock, or (3) allmem fields in the 'start new topic' HTML page.
Ссылки
- Patch
- Exploit
- Patch
- Patch
- Exploit
- Patch
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:maxwebportal:maxwebportal:1.30:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01288
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
MaxWebPortal 1.30 allows remote attackers to perform unauthorized actions by modifying hidden form fields, such as the (1) news, (2) lock, or (3) allmem fields in the 'start new topic' HTML page.
EPSS
Процентиль: 79%
0.01288
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other