Lucene search
JpcertCVELIST:CVE-2021-20842HistoryNov 24, 2021 - 8:25 a.m.
CVE-2021-20842
2021-11-2408:25:42
jpcert
www.cve.org
0.001 Low
EPSS
Percentile
44.3%
Cross-site request forgery (CSRF) vulnerability in EC-CUBE 2 series 2.11.0 to 2.17.1 allows a remote attacker to hijack the authentication of Administrator and delete Administrator via a specially crafted web page.
CNA Affected
[
{
"product": "EC-CUBE 2 series",
"vendor": "EC-CUBE CO.,LTD.",
"versions": [
{
"status": "affected",
"version": "2.11.0 to 2.17.1"
}
]
}
]Related
osv
osv
EC-CUBE Cross-site request forgery (CSRF) vulnerability
2022-05-24 19:21:18
CVE-2021-20842
2021-11-24 16:15:13
cnvd
cnvd
EC-CUBE Cross-site Request Forgery Vulnerability (CNVD-2022-03132)
2021-11-12 00:00:00
prion
prion
Cross site request forgery (csrf)
2021-11-24 16:15:00
nvd
nvd
CVE-2021-20842
2021-11-24 16:15:13
cve
cve
CVE-2021-20842
2021-11-24 16:15:13
github
github
EC-CUBE Cross-site request forgery (CSRF) vulnerability
2022-05-24 19:21:18
jvn
jvn
JVN#75444925: Multiple vulnerabilities in EC-CUBE 2 series
2021-11-11 00:00:00