CVE-2007-3821

Опубликовано: 17 июл. 2007

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Cross-site request forgery (CSRF) vulnerability in Webcit before 7.11 allows remote attackers to modify configurations and perform other actions as arbitrary users via unspecified vectors.

Ссылки

http://osvdb.org/38181
http://secunia.com/advisories/26090
Vendor Advisory
http://securityreason.com/securityalert/2890
http://www.securityfocus.com/archive/1/473714/100/0/threaded
http://www.securityfocus.com/bid/24913
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/35432
http://osvdb.org/38181
http://secunia.com/advisories/26090
Vendor Advisory
http://securityreason.com/securityalert/2890
http://www.securityfocus.com/archive/1/473714/100/0/threaded
http://www.securityfocus.com/bid/24913
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/35432

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:citadel:webcit:*:*:*:*:*:*:*:*

Версия до 7.10 (включая)

EPSS

Процентиль: 75%

0.00878

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9rjr-pq6m-pxx6

github

почти 4 года назад