Lucene search
HistoryApr 03, 2009 - 6:30 p.m.
CVE-2008-6585
cve-2008-6585
csrf
vulnerability
html
admin.php
torrentflux 2.3
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.011 Low
EPSS
Percentile
84.3%
Cross-site request forgery (CSRF) vulnerability in html/admin.php in TorrentFlux 2.3 allows remote attackers to hijack the authentication of administrators for requests that add new accounts via the addUser action.
Affected configurations
Node
torrentfluxtorrentfluxMatch2.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| torrentflux:torrentflux | torrentflux | eq | 2.3 |
Related
nvd
nvd
CVE-2008-6585
2009-04-03 18:30:00
ubuntucve
ubuntucve
CVE-2008-6585
2009-04-03 00:00:00
cvelist
cvelist
CVE-2008-6585
2009-04-03 18:00:00
prion
prion
Cross site request forgery (csrf)
2009-04-03 18:30:00
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.011 Low
EPSS
Percentile
84.3%
Related for CVE-2008-6585