Lucene search
HistoryAug 31, 2015 - 7:59 p.m.
CVE-2015-6655
cve-2015-6655
csrf
vulnerability
pligg cms
admin_users.php
7.1 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
64.3%
Cross-site request forgery (CSRF) vulnerability in Pligg CMS 2.0.2 allows remote attackers to hijack the authentication of administrators for requests that add an administrator via a request to admin/admin_users.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| pligg:pligg_cms | pligg pligg cms | eq | 2.0.2 |
Related
checkpoint_advisories
checkpoint_advisories
Pligg CMS Cross Site Request Forgery (CVE-2015-6655)
2020-12-21 00:00:00
prion
prion
Cross site request forgery (csrf)
2015-08-31 19:59:00
packetstorm
packetstorm
Pligg CMS 2.0.2 Cross Site Request Forgery
2015-08-25 00:00:00
zdt
zdt
Pligg CMS 2.0.2 - CSRF Add Admin Exploit
2015-08-25 00:00:00
exploitpack
exploitpack
Pligg CMS 2.0.2 - Cross-Site Request Forgery (Add Admin)
2015-08-24 00:00:00
cvelist
cvelist
CVE-2015-6655
2015-08-31 19:00:00
exploitdb
exploitdb
Pligg CMS 2.0.2 - Cross-Site Request Forgery (Add Admin)
2015-08-24 00:00:00
7.1 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
64.3%
Related for CVE-2015-6655