CVE-2017-7447

2017-04-0522:59:00

CWE-352

web.nvd.nist.gov

cve-2017-7447

helpdezk

csrf

admin

remote execution

php code

8.6 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.8%

CPENameOperatorVersion
helpdezk:helpdezkhelpdezkeq1.1.1

CPE	Name	Operator	Version
helpdezk:helpdezk	helpdezk	eq	1.1.1

References

rungga.blogspot.co.id/2017/04/multiple-csrf-remote-code-execution.html

www.securityfocus.com/bid/97485

github.com/albandes/helpdezk/issues/2

www.exploit-db.com/exploits/41824/