Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2007-1520
HistoryMar 20, 2007 - 8:00 p.m.

CVE-2007-1520

2007-03-2020:00:00
mitre
www.cve.org
5

AI Score

6.8

Confidence

High

EPSS

0.025

Percentile

90.1%

JSON

The cross-site request forgery (CSRF) protection in PHP-Nuke 8.0 and earlier does not ensure the SERVER superglobal is an array before validating the HTTP_REFERER, which allows remote attackers to conduct CSRF attacks.

Related

nvd 1
cve 1
prion 1
securityvulns 1
nvd
nvd
CVE-2007-1520
2007-03-20 20:19:00
cve
cve
CVE-2007-1520
2007-03-20 20:19:00
prion
prion
Cross site request forgery (csrf)
2007-03-20 20:19:00
securityvulns
securityvulns
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2007-03-09 00:00:00

AI Score

6.8

Confidence

High

EPSS

0.025

Percentile

90.1%

JSON
Related for CVELIST:CVE-2007-1520
nvd1cve1prion1securityvulns1