CVE-2022-4867

2022-12-3109:15:12

Google

osv.dev

github repository

csrf

vulnerability

froxlor/froxlor

version 2.0.0-beta1

software

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

0.001 Low

EPSS

Percentile

29.0%

JSON

Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.

CPENameOperatorVersion
froxloreq0.9.38
froxloreq0.9.26
froxloreq0.10.11
froxloreq0.9.19
froxloreq0.9.22
froxloreq0.9.28-rc1
froxloreq0.10.6
froxloreq0.9.27
froxloreq0.10.20
froxloreq0.9.37

Name	Operator	Version
froxlor	eq	0.9.38
froxlor	eq	0.9.26
froxlor	eq	0.10.11
froxlor	eq	0.9.19
froxlor	eq	0.9.22
froxlor	eq	0.9.28-rc1
froxlor	eq	0.10.6
froxlor	eq	0.9.27
froxlor	eq	0.10.20
froxlor	eq	0.9.37