CVE-2017-2102

2017-04-2816:00:00

jpcert

www.cve.org

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

49.2%

JSON

Cross-site request forgery (CSRF) vulnerability in Hands-on Vulnerability Learning Tool “AppGoat” for Web Application V3.0.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CNA Affected

[
  {
    "product": "Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application",
    "vendor": "INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)",
    "versions": [
      {
        "status": "affected",
        "version": "V3.0.0 and earlier"
      }
    ]
  }
]

References

jvn.jp/en/jp/JVN39008927/index.html

www.securityfocus.com/bid/96260