exploitDog

CVE-2021-46027

Опубликовано: 19 янв. 2022

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

mysiteforme, as of 19-12-2022, has a CSRF vulnerability in the background blog management. The attacker constructs a CSRF load. Once the administrator clicks a malicious link, a blog tag will be added

Ссылки

https://github.com/wangl1989/mysiteforme/issues/40
Exploit
Issue Tracking
Third Party Advisory
https://github.com/wangl1989/mysiteforme/issues/40
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wangl1989:mysiteforme:-:*:*:*:*:*:*:*

EPSS

Процентиль: 27%

0.00098

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-76hq-7c4p-7vcg

CVSS3: 6.5

github

около 4 лет назад

mysiteforme, as of 19-12-2022, has a CSRF vulnerability in the background blog management. The attacker constructs a CSRF load. Once the administrator clicks a malicious link, a blog tag will be added

EPSS

Процентиль: 27%

0.00098

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352