CVE-2020-13231

Опубликовано: 20 мая 2020

Источник: ubuntu

Приоритет: medium

CVSS2: 4.3

CVSS3: 6.5

Описание

In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for an admin email change.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	not-affected	1.2.16+ds1-2ubuntu1
eoan	ignored	end of life
esm-apps/bionic	released	1.1.38+ds1-1ubuntu0.1~esm1
esm-apps/focal	released	1.2.10+ds1-1ubuntu1+esm1
esm-apps/jammy	not-affected	1.2.16+ds1-2ubuntu1
esm-apps/noble	not-affected	1.2.16+ds1-2ubuntu1
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	needs-triage
focal	ignored	end of standard support, was needed

Показывать по

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2020-13231

CVSS3: 6.5

nvd

больше 5 лет назад

In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for an admin email change.

CVE-2020-13231

CVSS3: 6.5

debian

больше 5 лет назад

In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for a ...

GHSA-x74c-6f97-qx3g

CVSS3: 6.5

github

больше 3 лет назад

In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for an admin email change.

4.3 Medium

CVSS2

6.5 Medium

CVSS3