exploitDog

CVE-2020-23522

Опубликовано: 19 янв. 2021

Источник: nvd

CVSS3: 6.8

CVSS2: 6

EPSS Низкий

Описание

Pixelimity 1.0 has cross-site request forgery via the admin/setting.php data [Password] parameter.

Ссылки

http://packetstormsecurity.com/files/161276/Pixelimity-1.0-Cross-Site-Request-Forgery.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/pixelimity/pixelimity/issues/20
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/161276/Pixelimity-1.0-Cross-Site-Request-Forgery.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/pixelimity/pixelimity/issues/20
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:pixelimity:pixelimity:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 41%

0.00191

Низкий

6.8 Medium

CVSS3

6 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-8q82-2c4p-w6hp

github

больше 3 лет назад

Pixelimity 1.0 has cross-site request forgery via the admin/setting.php data [Password] parameter.

EPSS

Процентиль: 41%

0.00191

Низкий

6.8 Medium

CVSS3

6 Medium

CVSS2

Дефекты

CWE-352