Lucene search

K

MitreCVELIST:CVE-2007-5060

HistorySep 24, 2007 - 10:00 p.m.

CVE-2007-5060

2007-09-2422:00:00

mitre

www.cve.org

7.1 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.7%

Cross-site request forgery (CSRF) vulnerability in the cpass functionality in an admin action in index.php in XCMS allows remote attackers to change arbitrary passwords via certain password_ and rpassword_ parameters, possibly related to timestamp values.

References

secunia.com/advisories/26941

securityreason.com/securityalert/3165

www.securityfocus.com/archive/1/480326/100/0/threaded

www.securityfocus.com/bid/25771

exchange.xforce.ibmcloud.com/vulnerabilities/36755

7.1 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.7%

Related for CVELIST:CVE-2007-5060

cve1 prion1 nvd1