Lucene search

PRIOn knowledge basePRION:CVE-2007-5575

HistoryOct 18, 2007 - 9:17 p.m.

Cross site request forgery (csrf)

2007-10-1821:17:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

33.8%

JSON

Cross-site request forgery (CSRF) vulnerability in 1024 CMS 1.2.5 allows remote attackers to perform some actions as administrators, as demonstrated by (1) an unspecified action that creates a file containing PHP code and (2) unspecified use of the forum component. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CPENameOperatorVersion
1024_cmseq1.2.5

CPE	Name	Operator	Version
	1024_cms	eq	1.2.5

References

secunia.com/advisories/27259

exchange.xforce.ibmcloud.com/vulnerabilities/37267

7.5 High

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

33.8%

JSON

Related for PRION:CVE-2007-5575