exploitDog

CVE-2013-1109

Опубликовано: 17 янв. 2013

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Cross-site request forgery (CSRF) vulnerability in testingLibraryAction.do in the Training Center testing library in Cisco WebEx Training Center allows remote attackers to hijack the authentication of arbitrary users for requests that delete tests, aka Bug ID CSCzu81067.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:webex_training_center:-:*:*:*:*:*:*:*

EPSS

Процентиль: 32%

0.00122

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-xvxq-r6r9-xm62

github

больше 3 лет назад

Cross-site request forgery (CSRF) vulnerability in testingLibraryAction.do in the Training Center testing library in Cisco WebEx Training Center allows remote attackers to hijack the authentication of arbitrary users for requests that delete tests, aka Bug ID CSCzu81067.

EPSS

Процентиль: 32%

0.00122

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352