Lucene search
MitreCVE-2024-42792HistoryAug 26, 2024 - 5:15 p.m.
CVE-2024-42792
2024-08-2617:15:06
CWE-352
mitre
web.nvd.nist.gov
25
cve-2024-42792
csrf
kashipara music system
CVSS3
3.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
AI Score
7.2
Confidence
High
EPSS
0
Percentile
14.7%
A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System v1.0 via /music/ajax.php?action=delete_playlist page.
Affected configurations
Node
lopalopamusic_management_systemMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lopalopa | music_management_system | 1.0 | cpe:2.3:a:lopalopa:music_management_system:1.0:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2024-42792
2024-08-26 17:15:06
cvelist
cvelist
CVE-2024-42792
2024-08-26 00:00:00
vulnrichment
vulnrichment
CVE-2024-42792
2024-08-26 00:00:00
CVSS3
3.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
AI Score
7.2
Confidence
High
EPSS
0
Percentile
14.7%
Related for CVE-2024-42792