Lucene search
GoogleOSV:CVE-2017-1000008HistoryJul 17, 2017 - 1:18 p.m.
CVE-2017-1000008
2017-07-1713:18:16
Google
osv.dev
2
Chyrp Lite version 2016.04 is vulnerable to a CSRF in the user settings function allowing attackers to hijack the authentication of logged in users to modify account information, including their password.
| CPE | Name | Operator | Version |
|---|---|---|---|
| chyrp-lite | eq | 2016.02 | |
| chyrp-lite | eq | 2016.01 | |
| chyrp-lite | eq | 2015.07 | |
| chyrp-lite | eq | 2016.04 | |
| chyrp-lite | eq | 2016.03 | |
| chyrp-lite | eq | 2015.06 |
Related
cve
cve
CVE-2017-1000008
2017-07-17 13:18:16
cvelist
cvelist
CVE-2017-1000008
2017-07-13 20:00:00
nvd
nvd
CVE-2017-1000008
2017-07-17 13:18:16
prion
prion
Cross site request forgery (csrf)
2017-07-17 13:18:00