Lucene search
HistoryApr 21, 2008 - 1:05 p.m.
CVE-2008-0165
cve-2008-0165
cross-site request forgery
csrf
ikiwiki
vulnerability
security
6.7 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
61.3%
Cross-site request forgery (CSRF) vulnerability in Ikiwiki before 2.42 allows remote attackers to modify user preferences, including passwords, via the (1) preferences and (2) edit forms.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ikiwiki:ikiwiki | ikiwiki | le | 2.41 |
Related
debian
debian
[SECURITY] [DSA 1553-2] New ikiwiki packages fix regression
2008-06-01 18:04:03
[SECURITY] [DSA 1553-1] New ikiwiki packages fix cross-site request forgery
2008-04-20 11:09:30
openvas
openvas
Debian: Security Advisory (DSA-1553-1)
2008-04-21 00:00:00
FreeBSD Ports: ikiwiki
2008-09-04 00:00:00
Debian Security Advisory DSA 1553-2 (ikiwiki)
2008-06-11 00:00:00
freebsd
freebsd
ikiwiki -- cross site request forging
2008-04-10 00:00:00
ubuntucve
ubuntucve
CVE-2008-0165
2008-04-21 00:00:00
prion
prion
Cross site request forgery (csrf)
2008-04-21 13:05:00
nessus
nessus
FreeBSD : ikiwiki -- cross site request forging (8d2c0ce1-08b6-11dd-94b4-0016d325a0ed)
2008-04-17 00:00:00
Debian DSA-1553-1 : ikiwiki - cross-site request forgery
2008-04-22 00:00:00
cvelist
cvelist
CVE-2008-0165
2008-04-20 18:00:00
debiancve
debiancve
CVE-2008-0165
2008-04-21 13:05:00
6.7 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
61.3%
Related for CVE-2008-0165