exploitDog

CVE-2024-12955

Опубликовано: 26 дек. 2024

Источник: nvd

CVSS3: 4.3

CVSS2: 5

EPSS Низкий

Описание

A vulnerability has been found in PHPGurukul Blood Bank & Donor Management System 2.4 and classified as problematic. This vulnerability affects unknown code of the file /logout.php. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Ссылки

https://phpgurukul.com/
Product
https://vuldb.com/?ctiid.289318
Permissions Required
VDB Entry
https://vuldb.com/?id.289318
Third Party Advisory
VDB Entry
https://vuldb.com/?submit.468878
Third Party Advisory
VDB Entry
https://vuldb.com/?submit.468878
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpgurukul:blood_bank_\&_donor_management_system:2.4:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.00157

Низкий

4.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-g4x7-8w68-pf83

CVSS3: 4.3

github

около 1 года назад

A vulnerability has been found in PHPGurukul Blood Bank & Donor Management System 2.4 and classified as problematic. This vulnerability affects unknown code of the file /logout.php. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

EPSS

Процентиль: 37%

0.00157

Низкий

4.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-352