Количество 2
Количество 2
CVE-2017-15063
больше 8 лет назад
There are CSRF vulnerabilities in Subrion CMS 4.1.x through 4.1.5, and before 4.2.0, because of a logic error. Although there is functionality to detect CSRF, it is called too late in the ia.core.php code, allowing (for example) an attack against the query parameter to panel/database.
CVSS3: 8.8
EPSS: Низкий
GHSA-rc94-7v55-wmg6
больше 3 лет назад
Subrion CMS CSRF Vulnerability
CVSS3: 8.8
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-15063 There are CSRF vulnerabilities in Subrion CMS 4.1.x through 4.1.5, and before 4.2.0, because of a logic error. Although there is functionality to detect CSRF, it is called too late in the ia.core.php code, allowing (for example) an attack against the query parameter to panel/database. | CVSS3: 8.8 | 0% Низкий | больше 8 лет назад |
| GHSA-rc94-7v55-wmg6 Subrion CMS CSRF Vulnerability | CVSS3: 8.8 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20