Cross site request forgery (csrf)

2017-10-2318:29:00

PRIOn knowledge base

www.prio-n.com

7.7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.6%

JSON

Multiple cross-site request forgery (CSRF) vulnerabilities in LetoDMS (formerly MyDMS) before 3.3.8 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CPENameOperatorVersion
letodmsle3.3.7

CPE	Name	Operator	Version
	letodms	le	3.3.7

References

sourceforge.net/p/mydms/code/HEAD/tree/trunk/CHANGELOG

www.openwall.com/lists/oss-security/2012/10/06/1

www.openwall.com/lists/oss-security/2012/10/31/7