Cross site request forgery (csrf)

2008-04-1019:05:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.9%

JSON

Multiple cross-site request forgery (CSRF) vulnerabilities in Nuke ET 3.2 and 3.4 allow remote attackers to perform actions as administrators, as demonstrated by inserting an XSS sequence into a document.

CPENameOperatorVersion
nuke_eteq3.4
nuke_eteq3.2

CPE	Name	Operator	Version
	nuke_et	eq	3.4
	nuke_et	eq	3.2

References

secunia.com/advisories/29651

www.mrzayas.es/2008/04/07/xsrf-en-nuke-et-3x/

exchange.xforce.ibmcloud.com/vulnerabilities/41851