Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2022-28731

Опубликовано: 04 авг. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 6.5

Описание

A carefully crafted request on UserPreferences.jsp could trigger an CSRF vulnerability on Apache JSPWiki before 2.11.3, which could allow the attacker to modify the email associated with the attacked account, and then a reset password request from the login page.

РелизСтатусПримечание
bionic

DNE

esm-infra/focal

DNE

focal

DNE

jammy

DNE

trusty

ignored

end of standard support
upstream

needs-triage

xenial

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 91%
0.06531
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2022-28731

CVSS3: 6.5
nvd
больше 3 лет назад

A carefully crafted request on UserPreferences.jsp could trigger an CSRF vulnerability on Apache JSPWiki before 2.11.3, which could allow the attacker to modify the email associated with the attacked account, and then a reset password request from the login page.

debian логотип

CVE-2022-28731

CVSS3: 6.5
debian
больше 3 лет назад

A carefully crafted request on UserPreferences.jsp could trigger an CS ...

github логотип

GHSA-9x9j-vrhj-v364

CVSS3: 6.5
github
больше 3 лет назад

Apache JSPWiki CSRF due to crafted request on UserPreferences.jsp

EPSS

Процентиль: 91%
0.06531
Низкий

6.5 Medium

CVSS3