Описание
A vulnerability classified as problematic has been found in code-projects E-Commerce Site 1.0. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Ссылки
- Product
- ExploitIssue Tracking
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- ExploitIssue Tracking
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:fabianros:e-commerce_site:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00034
Низкий
4.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 4.3
github
около 2 месяцев назад
A vulnerability classified as problematic has been found in code-projects E-Commerce Site 1.0. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 8%
0.00034
Низкий
4.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-352