CVE-2010-3305

2019-11-1221:09:43

redhat

www.cve.org

AI Score

8.8

Confidence

High

EPSS

0.011

Percentile

84.5%

JSON

Cross-site request forgery (CSRF) vulnerability in pixelpost 1.7.3 could allow remote attackers to change the admin password.

CNA Affected

[
  {
    "product": "pixelpost",
    "vendor": "pixelpost",
    "versions": [
      {
        "status": "affected",
        "version": "1.7.3"
      }
    ]
  }
]

References

access.redhat.com/security/cve/cve-2010-3305

security-tracker.debian.org/tracker/CVE-2010-3305

www.exploit-db.com/exploits/15014

www.openwall.com/lists/oss-security/2010/09/17/7