CVE-2020-12282

2020-09-2415:10:45

mitre

www.cve.org

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.3%

JSON

iSmartgate PRO 1.5.9 is vulnerable to CSRF via the busca parameter in the form used for searching for users, accessible via /index.php. (This can be combined with reflected XSS.)

References

ismartgate.com/secure-garage-door/

kth.diva-portal.org/smash/get/diva2:1464458/FULLTEXT01.pdf