CVE-2012-6508

🗓️ 24 Jan 2013 01:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov👁 38 Views🌐 WEB

"CVE-2012-6508 CSRF vulnerabilities in NetArt Media Car Portal 3.0

Reporter	Title	Published	Views	Family All 5
Cvelist	CVE-2012-6508	24 Jan 201301:00	–	cvelist
EUVD	EUVD-2012-6358	7 Oct 202500:30	–	euvd
NVD	CVE-2012-6508	24 Jan 201301:55	–	nvd
Prion	Cross site request forgery (csrf)	24 Jan 201301:55	–	prion
RedhatCVE	CVE-2012-6508	22 May 202512:13	–	redhatcve

NVD

Node

netartmedia car_portalMatch3.0

Source	Link
packetstormsecurity	www.packetstormsecurity.org/files/112226/Car-Portal-CMS-3.0-CSRF-XSS-Shell-Upload.html
secunia	www.secunia.com/advisories/49010
vulnerability-lab	www.vulnerability-lab.com/get_content.php

Parameter	Position	Path	Description	CWE
nouveau	request body	cars/ADMIN/index.php	CSRF allows changing admin password via nouveau action	CWE-352
sub_accounts	request body	USERS/index.php	CSRF allows creating a user via sub_accounts action in home module	CWE-352
create_user	request body	USERS/index.php	CSRF allows creating a user via sub_accounts action in home module	CWE-352
sub_accounts	request body	USERS/index.php	CSRF allows creating a sub user via sub_accounts action in home module	CWE-352
create_sub_user	request body	USERS/index.php	CSRF allows creating a sub user via sub_accounts action in home module	CWE-352
edit	request body	USERS/index.php	CSRF allows changing profile information via edit action in profile module	CWE-352

29 Apr 2026 01:13Current

7.3High risk

Vulners AI Score7.3

CVSS 26.8

EPSS0.00414

cve-2012-6508 csrf netart media car portal 3.0 security vulnerability