Описание
A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Ссылки
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:kurniaramadhan:e-commerce-php:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 10%
0.00036
Низкий
4.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 4.3
github
около 1 года назад
A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
EPSS
Процентиль: 10%
0.00036
Низкий
4.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-352