Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2012-4002
HistoryOct 09, 2012 - 11:55 p.m.

CVE-2012-4002

2012-10-0923:55:04
CWE-352
mitre
web.nvd.nist.gov
29
cve-2012-4002
cross-site request forgery
csrf vulnerability
glpi-project
glpi
nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.002

Percentile

64.5%

JSON

Cross-site request forgery (CSRF) vulnerability in GLPI-PROJECT GLPI before 0.83.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Affected configurations

Nvd
Node
glpi-projectglpiRange0.83.2
OR
glpi-projectglpiMatch0.5
OR
glpi-projectglpiMatch0.5rc1
OR
glpi-projectglpiMatch0.5rc2
OR
glpi-projectglpiMatch0.6
OR
glpi-projectglpiMatch0.6rc1
OR
glpi-projectglpiMatch0.6rc2
OR
glpi-projectglpiMatch0.6rc3
OR
glpi-projectglpiMatch0.20
OR
glpi-projectglpiMatch0.21
OR
glpi-projectglpiMatch0.30
OR
glpi-projectglpiMatch0.31
OR
glpi-projectglpiMatch0.40
OR
glpi-projectglpiMatch0.41
OR
glpi-projectglpiMatch0.42
OR
glpi-projectglpiMatch0.51
OR
glpi-projectglpiMatch0.51a
OR
glpi-projectglpiMatch0.65
OR
glpi-projectglpiMatch0.65rc1
OR
glpi-projectglpiMatch0.65rc2
OR
glpi-projectglpiMatch0.68
OR
glpi-projectglpiMatch0.68rc1
OR
glpi-projectglpiMatch0.68rc2
OR
glpi-projectglpiMatch0.68rc3
OR
glpi-projectglpiMatch0.68.1
OR
glpi-projectglpiMatch0.68.2
OR
glpi-projectglpiMatch0.68.3
OR
glpi-projectglpiMatch0.70
OR
glpi-projectglpiMatch0.70rc1
OR
glpi-projectglpiMatch0.70rc2
OR
glpi-projectglpiMatch0.70rc3
OR
glpi-projectglpiMatch0.70.1
OR
glpi-projectglpiMatch0.70.2
OR
glpi-projectglpiMatch0.71
OR
glpi-projectglpiMatch0.71.1
OR
glpi-projectglpiMatch0.71.1rc1
OR
glpi-projectglpiMatch0.71.1rc2
OR
glpi-projectglpiMatch0.71.1rc3
OR
glpi-projectglpiMatch0.71.2
OR
glpi-projectglpiMatch0.71.3
OR
glpi-projectglpiMatch0.71.4
OR
glpi-projectglpiMatch0.71.5
OR
glpi-projectglpiMatch0.71.6
OR
glpi-projectglpiMatch0.72
OR
glpi-projectglpiMatch0.72rc1
OR
glpi-projectglpiMatch0.72rc2
OR
glpi-projectglpiMatch0.72rc3
OR
glpi-projectglpiMatch0.72.1
OR
glpi-projectglpiMatch0.72.2
OR
glpi-projectglpiMatch0.72.3
OR
glpi-projectglpiMatch0.72.4
OR
glpi-projectglpiMatch0.78
OR
glpi-projectglpiMatch0.78.1
OR
glpi-projectglpiMatch0.78.2
OR
glpi-projectglpiMatch0.78.3
OR
glpi-projectglpiMatch0.78.4
OR
glpi-projectglpiMatch0.78.5
OR
glpi-projectglpiMatch0.80
OR
glpi-projectglpiMatch0.80.1
OR
glpi-projectglpiMatch0.80.2
OR
glpi-projectglpiMatch0.80.3
OR
glpi-projectglpiMatch0.80.4
OR
glpi-projectglpiMatch0.80.5
OR
glpi-projectglpiMatch0.80.6
OR
glpi-projectglpiMatch0.80.7
OR
glpi-projectglpiMatch0.80.61
OR
glpi-projectglpiMatch0.83
OR
glpi-projectglpiMatch0.83.1
VendorProductVersionCPE
glpi-projectglpi*cpe:2.3:a:glpi-project:glpi:*:*:*:*:*:*:*:*
glpi-projectglpi0.5cpe:2.3:a:glpi-project:glpi:0.5:*:*:*:*:*:*:*
glpi-projectglpi0.5cpe:2.3:a:glpi-project:glpi:0.5:rc1:*:*:*:*:*:*
glpi-projectglpi0.5cpe:2.3:a:glpi-project:glpi:0.5:rc2:*:*:*:*:*:*
glpi-projectglpi0.6cpe:2.3:a:glpi-project:glpi:0.6:*:*:*:*:*:*:*
glpi-projectglpi0.6cpe:2.3:a:glpi-project:glpi:0.6:rc1:*:*:*:*:*:*
glpi-projectglpi0.6cpe:2.3:a:glpi-project:glpi:0.6:rc2:*:*:*:*:*:*
glpi-projectglpi0.6cpe:2.3:a:glpi-project:glpi:0.6:rc3:*:*:*:*:*:*
glpi-projectglpi0.20cpe:2.3:a:glpi-project:glpi:0.20:*:*:*:*:*:*:*
glpi-projectglpi0.21cpe:2.3:a:glpi-project:glpi:0.21:*:*:*:*:*:*:*
Rows per page:
1-10 of 681

Related

nvd 1
ubuntucve 1
prion 1
cvelist 1
securityvulns 1
nvd
nvd
CVE-2012-4002
2012-10-09 23:55:04
ubuntucve
ubuntucve
CVE-2012-4002
2012-10-09 00:00:00
prion
prion
Cross site request forgery (csrf)
2012-10-09 23:55:00
cvelist
cvelist
CVE-2012-4002
2012-10-09 23:00:00
securityvulns
securityvulns
[ MDVSA-2012:132 ] glpi
2012-09-03 00:00:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.002

Percentile

64.5%

JSON
Related for CVE-2012-4002
nvd1ubuntucve1prion1cvelist1securityvulns1