exploitDog

CVE-2008-7192

Опубликовано: 09 сент. 2009

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Cross-site request forgery (CSRF) vulnerability in index.php in WoltLab Burning Board (wBB) 3.0.1, and possibly other 3.x versions, allows remote attackers to hijack the authentication of users for requests that delete private messages via the pmID parameter in a delete action in a PM page, a different vulnerability than CVE-2008-0472.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:woltlab:burning_board:3.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 24%

0.00079

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-w6p8-2rhg-6vh7

github

больше 3 лет назад

Cross-site request forgery (CSRF) vulnerability in index.php in WoltLab Burning Board (wBB) 3.0.1, and possibly other 3.x versions, allows remote attackers to hijack the authentication of users for requests that delete private messages via the pmID parameter in a delete action in a PM page, a different vulnerability than CVE-2008-0472.

EPSS

Процентиль: 24%

0.00079

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352