Описание
Cross-site request forgery (CSRF) vulnerability in IPplan 4.91a allows remote attackers to hijack the authentication of administrators for requests that (1) change the password, (2) add users, or (3) delete users via unknown vectors.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:richard_ellerbrock:ipplan:4.91a:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00142
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
debian
больше 16 лет назад
Cross-site request forgery (CSRF) vulnerability in IPplan 4.91a allows ...
github
почти 4 года назад
Cross-site request forgery (CSRF) vulnerability in IPplan 4.91a allows remote attackers to hijack the authentication of administrators for requests that (1) change the password, (2) add users, or (3) delete users via unknown vectors.
EPSS
Процентиль: 35%
0.00142
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-352