Cross site request forgery (csrf)

2011-01-2519:00:00

PRIOn knowledge base

www.prio-n.com

7.7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.1%

JSON

Cross-site request forgery (CSRF) vulnerability in admin/conf_users_edit.php in PHP Link Directory (phpLD) 4.1.0 allows remote attackers to hijack the authentication of administrators for requests that add an administrator via the N action.

CPENameOperatorVersion
php_link_directoryeq4.1.0

CPE	Name	Operator	Version
	php_link_directory	eq	4.1.0

References

osvdb.org/70627

secunia.com/advisories/43032

exchange.xforce.ibmcloud.com/vulnerabilities/64860

www.exploit-db.com/exploits/16037