Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2018-6888
HistoryFeb 12, 2018 - 3:29 a.m.

CVE-2018-6888

2018-02-1203:29:00
Google
osv.dev
3

AI Score

7

Confidence

Low

EPSS

0.001

Percentile

51.0%

JSON

An issue was discovered in Typesetter 5.1. The User Permissions page (aka Admin/Users) suffers from critical flaw of Cross Site Request forgery: using a forged HTTP request, a malicious user can lead a user to unknowingly create / delete or modify a user account due to the lack of an anti-CSRF token.

Related

prion 1
zdt 1
nvd 1
exploitdb 1
cve 1
packetstorm 1
cvelist 1
prion
prion
Cross site request forgery (csrf)
2018-02-12 03:29:00
zdt
zdt
TypeSetter CMS 5.1 - Cross-Site Request Forgery Vulnerability
2018-02-13 00:00:00
nvd
nvd
CVE-2018-6888
2018-02-12 03:29:00
exploitdb
exploitdb
TypeSetter CMS 5.1 - Cross-Site Request Forgery
2018-02-13 00:00:00
cve
cve
CVE-2018-6888
2018-02-12 03:29:00
packetstorm
packetstorm
TypeSetter CMS 5.1 Cross Site Request Forgery
2018-02-14 00:00:00
cvelist
cvelist
CVE-2018-6888
2018-02-12 03:00:00

AI Score

7

Confidence

Low

EPSS

0.001

Percentile

51.0%

JSON
Related for OSV:CVE-2018-6888
prion1zdt1nvd1exploitdb1cve1packetstorm1cvelist1