4 matches found
CVE-2017-12838
Cross-site request forgery CSRF vulnerability in NexusPHP 1.5 allows remote attackers to hijack the authentication of users for requests that 1 send manas via a request to mybonus.php or 2 add administrators via unspecified vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in NexusPHP 1.5 allows remote attackers to hijack the authentication of users for requests that 1 send manas via a request to mybonus.php or 2 add administrators via unspecified vectors...
CVE-2017-12838
NexusPHP 1.5 is affected by a CSRF vulnerability (CVE-2017-12838) that allows remote attackers to hijack user authentication for requests targeting mybonus.php or to add administrator accounts. The issue is confirmed across multiple sources (NVD/CNVD/PRION entries) and is described as a cross‑sit...
CVE-2017-12838
Cross-site request forgery CSRF vulnerability in NexusPHP 1.5 allows remote attackers to hijack the authentication of users for requests that 1 send manas via a request to mybonus.php or 2 add administrators via unspecified vectors...