Описание
SmodBIP is vulnerable to Cross-Site Request Forgery, that could be used to induce logged in users to perform unintended actions, including creation of additional accounts with administrative privileges. This issue affects all versions of SmodBIP. SmodBIP is no longer maintained and the vulnerability will not be fixed.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Product
- Third Party Advisory
- Third Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:smod:smodbip:*:*:*:*:*:*:*:*
EPSS
Процентиль: 41%
0.00192
Низкий
8.8 High
CVSS3
Дефекты
CWE-352
CWE-352
Связанные уязвимости
CVSS3: 8.8
github
больше 2 лет назад
** UNSUPPORTED WHEN ASSIGNED ** SmodBIP is vulnerable to Cross-Site Request Forgery, that could be used to induce logged in users to perform unintended actions, including creation of additional accounts with administrative privileges. This issue affects all versions of SmodBIP. SmodBIP is no longer maintained and the vulnerability will not be fixed.
EPSS
Процентиль: 41%
0.00192
Низкий
8.8 High
CVSS3
Дефекты
CWE-352
CWE-352