Lucene search
HistoryApr 21, 2010 - 2:30 p.m.
CVE-2009-4787
csrf
pligg
vulnerability
hijacking
admin authentication
7.5 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
47.2%
Multiple cross-site request forgery (CSRF) vulnerabilities in Pligg before 1.0.3 allow remote attackers to hijack the authentication of administrators for requests that create user accounts or have unspecified other impact.
| CPE | Name | Operator | Version |
|---|---|---|---|
| pligg:pligg_cms | pligg pligg cms | le | 1.0.2 |
| pligg:pligg_cms | pligg pligg cms | eq | 1.0.0 |
| pligg:pligg_cms | pligg pligg cms | eq | 1.0.1 |
Related
cvelist
cvelist
CVE-2009-4787
2022-10-03 16:24:05
prion
prion
Cross site request forgery (csrf)
2010-04-21 14:30:00
openvas
openvas
FreeBSD Ports: pligg
2009-12-14 00:00:00
Pligg Cross Site Scripting And Request Forgery Remote Vulnerabilities
2009-12-03 00:00:00
FreeBSD Ports: pligg
2009-12-14 00:00:00
nessus
nessus
freebsd
freebsd
pligg -- Cross-Site Scripting and Cross-Site Request Forgery
2009-12-02 00:00:00
7.5 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
47.2%
Related for CVE-2009-4787