Lucene search

K
cve[email protected]CVE-2015-6517
HistoryAug 18, 2015 - 6:00 p.m.

CVE-2015-6517

2015-08-1818:00:23
CWE-352
web.nvd.nist.gov
19
cve-2015-6517
cross-site request forgery
csrf vulnerability
phpliteadmin 1.1
remote attackers
user authentication

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

81.0%

Cross-site request forgery (CSRF) vulnerability in phpLiteAdmin 1.1 allows remote attackers to hijack the authentication of users for requests that drop database tables via the droptable parameter to phpliteadmin.php.

Affected configurations

NVD
Node
phpliteadmin_projectphpliteadminMatch1.1

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

81.0%

Related for CVE-2015-6517