Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2012-5683
HistoryAug 14, 2014 - 2:00 p.m.

CVE-2012-5683

2014-08-1414:00:00
mitre
www.cve.org

9.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.8%

JSON

Multiple cross-site request forgery (CSRF) vulnerabilities in ZPanel 10.0.1 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) create new FTP users via a CreateFTP action in the ftp_management module to the default URI, (2) conduct cross-site scripting (XSS) attacks via the inFullname parameter in an UpdateAccountSettings action in the my_account module to zpanel/, or (3) conduct SQL injection attacks via the inEmailAddress parameter in an UpdateClient action in the manage_clients module to the default URI.

Related

prion 1
cve 1
nvd 1
packetstorm 1
seebug 1
exploitpack 1
exploitdb 1
prion
prion
Cross site request forgery (csrf)
2014-08-14 14:55:00
cve
cve
CVE-2012-5683
2014-08-14 14:55:05
nvd
nvd
CVE-2012-5683
2014-08-14 14:55:05
packetstorm
packetstorm
ZPanel 10.0.1 XSS / CSRF / SQL Injection
2012-11-05 00:00:00
seebug
seebug
ZPanel <= 10.0.1 CSRF, XSS, SQLi, Password Reset
2014-07-01 00:00:00
exploitpack
exploitpack
ZPanel 10.0.1 - Cross-Site Request Forgery Cross-Site Scripting SQL Injection Password Reset
2012-11-05 00:00:00
exploitdb
exploitdb
ZPanel 10.0.1 - Cross-Site Request Forgery / Cross-Site Scripting / SQL Injection / Password Reset
2012-11-05 00:00:00

9.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.8%

JSON
Related for CVELIST:CVE-2012-5683
prion1cve1nvd1packetstorm1seebug1exploitpack1exploitdb1