Lucene search
K

11 matches found

NVD
NVD
added 2013/03/14 3:13 a.m.19 views

CVE-2013-1468

Cross-site request forgery CSRF vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create arbitrary PHP files via unspecified vectors...

7.6CVSS7.1AI score0.05726EPSS
Exploits10References9
UbuntuCve
UbuntuCve
added 2013/03/14 3:13 a.m.31 views

CVE-2013-1468

Cross-site request forgery CSRF vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create arbitrary PHP files via unspecified vectors...

7.6CVSS6AI score0.05726EPSS
Exploits10References2
CVE
CVE
added 2013/03/12 4:0 p.m.79 views

CVE-2013-1468

CVE-2013-1468: Piwigo LocalFiles Editor plugin contains a CSRF vulnerability (pre-2.4.7) that enables an attacker to hijack administrator authentication and cause creation of arbitrary PHP files via unspecified vectors. Public details in the NVD description confirm the CSRF flaw with impact on in...

7.6CVSS7.2AI score0.05726EPSS
Exploits10References9Affected Software1
Cvelist
Cvelist
added 2013/03/12 4:0 p.m.36 views

CVE-2013-1468

Cross-site request forgery CSRF vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create arbitrary PHP files via unspecified vectors...

7.1AI score0.05726EPSS
Exploits10References9
securityvulns
securityvulns
added 2013/03/03 12:0 a.m.113 views

Multiple Vulnerabilities in Piwigo

Advisory ID: HTB23144 Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Request Forgery CWE-352, Path...

7.6CVSS6.8AI score0.56011EPSS
Exploits12
exploitpack
exploitpack
added 2013/03/01 12:0 a.m.69 views

Piwigo 2.4.6 - Multiple Vulnerabilities

Piwigo 2.4.6 - Multiple Vulnerabilities Advisory ID: HTB23144 Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure: February 27, 2013 Vulnerability Type:...

7.6CVSS0.4AI score0.56011EPSS
Exploits12
0day.today
0day.today
added 2013/03/01 12:0 a.m.60 views

Piwigo 2.4.6 - Multiple Vulnerabilities

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Piwigo, which can be exploited to perform Сross-Site Request Forgery and Path Traversal attacks. Advisory Details: High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Piwigo, whic...

7.4AI score0.56011EPSS
Exploits12
0day.today
0day.today
added 2013/03/01 12:0 a.m.79 views

Piwigo 2.4.6 Cross Site Request Forgery / Traversal Vulnerabilities

Piwigo version 2.4.5 suffers from cross site request forgery and path traversal vulnerabilities. Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure:...

7.6CVSS0.1AI score0.56011EPSS
Exploits12
Circl
Circl
added 2013/03/01 12:0 a.m.3 views

CVE-2013-1468

creationtimestamp| type| source ---|---|--- 2013-03-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/24561...

7.6CVSS4.9AI score0.05726EPSS
Exploits10References1
Exploit DB
Exploit DB
added 2013/03/01 12:0 a.m.62 views

Piwigo 2.4.6 - Multiple Vulnerabilities

Advisory ID: HTB23144 Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Request Forgery CWE-352, Path...

7.6CVSS6.4AI score0.56011EPSS
Exploits12
Packet Storm
Packet Storm
added 2013/02/28 12:0 a.m.45 views

Piwigo 2.4.6 Cross Site Request Forgery / Traversal

Advisory ID: HTB23144 Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Request Forgery CWE-352, Path...

7.6CVSS0.2AI score0.56011EPSS
Exploits12
Rows per page
Query Builder