Lucene search
JpcertCVE-2012-1237HistoryApr 06, 2012 - 6:55 p.m.
CVE-2012-1237
2012-04-0618:55:01
CWE-352
jpcert
web.nvd.nist.gov
26
vulnerability
csrf
sencha sns
remote attackers
authentication
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.002
Percentile
52.7%
Cross-site request forgery (CSRF) vulnerability in SENCHA SNS before 1.0.2 allows remote attackers to hijack the authentication of arbitrary users.
Affected configurations
Node
iczsencha_snsRange≤1.0.1
ORiczsencha_snsMatch1.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| icz | sencha_sns | * | cpe:2.3:a:icz:sencha_sns:*:*:*:*:*:*:*:* |
| icz | sencha_sns | 1.0.0 | cpe:2.3:a:icz:sencha_sns:1.0.0:*:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2012-04-06 18:55:00
cvelist
cvelist
CVE-2012-1237
2012-04-06 18:00:00
nvd
nvd
CVE-2012-1237
2012-04-06 18:55:01
jvn
jvn
JVN#44913777: SENCHA SNS vulnerable to cross-site request forgery
2012-04-05 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.002
Percentile
52.7%
Related for CVE-2012-1237