Lucene search
HistoryMay 23, 2014 - 2:55 p.m.
CVE-2013-2713
cve-2013-2713
cross-site request forgery
csrf
krisonav cms
authentication hijacking
6.9 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.01 Low
EPSS
Percentile
83.1%
Cross-site request forgery (CSRF) vulnerability in users_maint.html in KrisonAV CMS before 3.0.2 allows remote attackers to hijack the authentication of administrators for requests that create user accounts via a crafted request.
Related
prion
prion
Cross site request forgery (csrf)
2014-05-23 14:55:00
htbridge
htbridge
Multiple Vulnerabilities in KrisonAV CMS
2013-03-27 00:00:00
zdt
zdt
KrisonAV CMS 3.0.1 - Multiple Vulnerabilities
2013-04-18 00:00:00
securityvulns
securityvulns
Multiple Vulnerabilities in KrisonAV CMS
2013-05-06 00:00:00
exploitpack
exploitpack
KrisonAV CMS 3.0.1 - Multiple Vulnerabilities
2013-04-18 00:00:00
packetstorm
packetstorm
KrisonAV CMS 3.0.1 CSRF / Cross Site Scripting
2013-04-17 00:00:00
exploitdb
exploitdb
KrisonAV CMS 3.0.1 - Multiple Vulnerabilities
2013-04-18 00:00:00
6.9 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.01 Low
EPSS
Percentile
83.1%
Related for CVE-2013-2713