Описание
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/xenial | released | 2.1.0b6+dfsg.3-4+deb7u3ubuntu0.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [2.1.0b6+dfsg.3-4+deb7u3build0.14.04.1]] |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needs-triage |
| trusty | released | 2.1.0b6+dfsg.3-4+deb7u3build0.14.04.1 |
| trusty/esm | DNE | trusty was released [2.1.0b6+dfsg.3-4+deb7u3build0.14.04.1] |
| upstream | released | 2.1.8 |
| vivid | ignored | end of life |
| vivid/stable-phone-overlay | DNE |
Показывать по
10
EPSS
Процентиль: 32%
0.00126
Низкий
6.8 Medium
CVSS2
Связанные уязвимости
nvd
больше 10 лет назад
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.
debian
больше 10 лет назад
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2. ...
github
больше 3 лет назад
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.
EPSS
Процентиль: 32%
0.00126
Низкий
6.8 Medium
CVSS2