Lucene search
PRIOn knowledge basePRION:CVE-2013-2754HistoryMar 11, 2014 - 7:37 p.m.
Cross site request forgery (csrf)
2014-03-1119:37:00
PRIOn knowledge base
www.prio-n.com
3
7.4 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.011 Low
EPSS
Percentile
84.1%
Cross-site request forgery (CSRF) vulnerability in Umisoft UMI.CMS before 2.9 build 21905 allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts via a request to admin/users/add/user/do/.
Related
cvelist
cvelist
CVE-2013-2754
2014-03-11 15:00:00
exploitpack
exploitpack
UMI CMS 2.9 - Cross-Site Request Forgery
2013-05-14 00:00:00
securityvulns
securityvulns
Cross-Site Request Forgery (CSRF) in UMI.CMS
2013-05-10 00:00:00
cve
cve
CVE-2013-2754
2014-03-11 19:37:00
zdt
zdt
UMI.CMS 2.9 Cross Site Request Forgery Vulnerability
2013-05-09 00:00:00
htbridge
htbridge
Cross-Site Request Forgery (CSRF) in UMI.CMS
2013-04-03 00:00:00
packetstorm
packetstorm
UMI.CMS 2.9 Cross Site Request Forgery
2013-05-08 00:00:00
exploitdb
exploitdb
UMI CMS 2.9 - Cross-Site Request Forgery
2013-05-14 00:00:00
7.4 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.011 Low
EPSS
Percentile
84.1%
Related for PRION:CVE-2013-2754