Lucene search
K

4 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.37 views

SimpleRisk 20130915-01 - Multiple Vulnerabilities

No description provided by source. 1. Advisory Information Title: SimpleRisk v.20130915-01 CSRF-XSS Account Compromise Advisory ID: RS-2013-0001 Date Published: 2013-09-30 2. Vulnerability Information Type: Cross-Site Request Forgery CSRF CWE-352, OWASP-A8, Cross-Site Scripting XSS CWE-79, OWASP-...

6.8CVSS6.5AI score0.01987EPSS
Exploits7
CVE
CVE
added 2014/05/12 2:0 p.m.48 views

CVE-2013-5748

CVE-2013-5748 refers to a CSRF vulnerability in SimpleRisk’s management/prioritize_planning.php prior to version 20130916-001, which allows remote attackers to hijack user sessions for actions such as adding projects via add_project. The underlying issue is a Cross-Site Request Forgery that enabl...

6.8CVSS7.1AI score0.01987EPSS
Exploits6References2Affected Software1
0day.today
0day.today
added 2013/10/01 12:0 a.m.62 views

SimpleRisk 20130915-01 - Multiple Vulnerabilities

Exploit for php platform in category web applications 1. Advisory Information Title: SimpleRisk v.20130915-01 CSRF-XSS Account Compromise Advisory ID: RS-2013-0001 Date Published: 2013-09-30 2. Vulnerability Information Type: Cross-Site Request Forgery CSRF CWE-352, OWASP-A8, Cross-Site Scripting...

6.8CVSS6.5AI score0.01987EPSS
Exploits7
Exploit DB
Exploit DB
added 2013/09/30 12:0 a.m.44 views

SimpleRisk 20130915-01 - Multiple Vulnerabilities

Advisory Information Title: SimpleRisk v.20130915-01 CSRF-XSS Account Compromise Advisory ID: RS-2013-0001 Date Published: 2013-09-30 2. Vulnerability Information Type: Cross-Site Request Forgery CSRF CWE-352, OWASP-A8, Cross-Site Scripting XSS CWE-79, OWASP-A3 Impact: Full Account Compromise...

6.8CVSS6.5AI score0.01987EPSS
Exploits7
Rows per page
Query Builder