Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-1468
HistoryMar 14, 2013 - 3:13 a.m.

CVE-2013-1468

2013-03-1403:13:00
CWE-352
[email protected]
web.nvd.nist.gov
32
cve-2013-1468
csrf
vulnerability
localfiles editor
piwigo
authentication hijacking
administrators
php files
nvd

7 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.284 Low

EPSS

Percentile

96.8%

JSON

Cross-site request forgery (CSRF) vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create arbitrary PHP files via unspecified vectors.

Related

ubuntucve 1
cvelist 1
prion 1
packetstorm 2
securityvulns 2
nessus 1
zdt 1
openvas 1
exploitpack 2
htbridge 1
freebsd 1
exploitdb 2
ubuntucve
ubuntucve
CVE-2013-1468
2013-03-14 00:00:00
cvelist
cvelist
CVE-2013-1468
2022-10-03 16:14:48
prion
prion
Cross site request forgery (csrf)
2013-03-14 03:13:00
packetstorm
packetstorm
Piwigo 2.4.6 Cross Site Request Forgery / Traversal
2013-02-28 00:00:00
Piwigo 2.7.2 Cross Site Scripting / SQL Injection
2014-12-20 00:00:00
securityvulns
securityvulns
Multiple Vulnerabilities in Piwigo
2013-03-03 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2013-03-03 00:00:00
nessus
nessus
FreeBSD : piwigo -- CSRF/Path Traversal (edd201a5-8fc3-11e2-b131-000c299b62e1)
2013-03-20 00:00:00
zdt
zdt
Piwigo 2.4.6 Cross Site Request Forgery / Traversal Vulnerabilities
2013-03-01 00:00:00
openvas
openvas
Piwigo Cross Site Request Forgery and Path Traversal Vulnerabilities
2013-03-21 00:00:00
exploitpack
exploitpack
Piwigo 2.4.6 - Multiple Vulnerabilities
2013-03-01 00:00:00
Piwigo 2.7.2 - Multiple Vulnerabilities
2014-12-19 00:00:00
htbridge
htbridge
Multiple Vulnerabilities in Piwigo
2013-02-06 00:00:00
freebsd
freebsd
piwigo -- CSRF/Path Traversal
2013-02-06 00:00:00
exploitdb
exploitdb
Piwigo 2.4.6 - Multiple Vulnerabilities
2013-03-01 00:00:00
Piwigo 2.7.2 - Multiple Vulnerabilities
2014-12-19 00:00:00

7 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.284 Low

EPSS

Percentile

96.8%

JSON
Related for CVE-2013-1468
ubuntucve1cvelist1prion1packetstorm2securityvulns2nessus1zdt1openvas1exploitpack2htbridge1freebsd1exploitdb2