CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

Prion•added 2018/03/20 7:29 a.m.•10 views

Cross site request forgery (csrf)

DISPUTED Cross-site request forgery CSRF vulnerability in system/workplace/admin/accounts/userrole.jsp in OpenCMS 10.5.3 allows remote attackers to hijack the authentication of administrative users for requests that perform privilege escalation. Note: It is argued that OpenCMS allows only...

6.8CVSS9AI score0.00157EPSS

Exploits5References2Affected Software1

NVD•added 2018/03/20 7:29 a.m.•16 views

CVE-2018-8811

Cross-site request forgery CSRF vulnerability in system/workplace/admin/accounts/userrole.jsp in OpenCMS 10.5.3 allows remote attackers to hijack the authentication of administrative users for requests that perform privilege escalation. Note: It is argued that OpenCMS allows only registered users...

8.8CVSS9.1AI score0.00157EPSS

Exploits5References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by