exploitDog

CVE-2017-12790

Опубликовано: 09 мая 2019

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

Metinfo 5.3.18 is affected by: Cross Site Request Forgery (CSRF). The impact is: Information Disclosure (remote). The component is: admin/index.php. The attack vector is: The administrator clicks on the malicious link in the login state.

Ссылки

https://github.com/lemon666/vuln/blob/master/MetInfo5.3.md
Exploit
Third Party Advisory
https://github.com/lemon666/vuln/blob/master/MetInfo5.3.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:metinfo:metinfo:5.3.18:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.00157

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-xm88-v4r8-x892

github

больше 3 лет назад

Metinfo 5.3.18 is affected by: Cross Site Request Forgery (CSRF). The impact is: Information Disclosure (remote). The component is: admin/index.php. The attack vector is: The administrator clicks on the malicious link in the login state.

EPSS

Процентиль: 37%

0.00157

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352