CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site request forgery CSRF vulnerability in PHParanoid before 0.5 allows remote attackers to perform unspecified actions as authenticated users via unknown vectors related to private messages...

6.8CVSS6.7AI score0.00205EPSS

Exploits0References3

Prion•added 2008/12/30 7:30 p.m.•6 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in PHParanoid before 0.5 allows remote attackers to perform unspecified actions as authenticated users via unknown vectors related to private messages...

6.8CVSS7.2AI score0.00205EPSS

Exploits0References3Affected Software1

Cvelist•added 2008/12/30 7:0 p.m.•11 views

CVE-2008-5758

Cross-site request forgery CSRF vulnerability in PHParanoid before 0.5 allows remote attackers to perform unspecified actions as authenticated users via unknown vectors related to private messages...

6.7AI score0.00205EPSS

Exploits0References3

CVE•added 2008/12/30 7:0 p.m.•41 views

CVE-2008-5758

The CVE-2008-5758 entry documents a CSRF flaw in PHParanoid before 0.5 that could allow remote attackers to perform actions as authenticated users via unknown vectors related to private messages. Affected product: PHParanoid (pre-0.5). Vulnerability type: Cross-Site Request Forgery. Underlying ti...

6.8CVSS6.7AI score0.00205EPSS

Exploits0References3Affected Software1

NVD•added 2008/12/19 1:52 a.m.•5 views

CVE-2008-5672

Multiple cross-site request forgery CSRF vulnerabilities in PHParanoid before 0.4 allow remote attackers to hijack the authentication of arbitrary users for requests that use 1 admin.php or 2 private messages...

6.8CVSS7.4AI score0.00126EPSS

Exploits0References3

NVD•added 2008/12/19 1:52 a.m.•8 views

CVE-2008-5673

PHParanoid before 0.4 does not properly restrict access to the members area by unauthenticated users, which has unknown impact and remote attack vectors...

6.5CVSS6.8AI score0.00294EPSS

Exploits0References3

Prion•added 2008/12/19 1:52 a.m.•6 views

Design/Logic Flaw

PHParanoid before 0.4 does not properly restrict access to the members area by unauthenticated users, which has unknown impact and remote attack vectors...

6.5CVSS7.4AI score0.00294EPSS

Exploits0References3Affected Software1

Prion•added 2008/12/19 1:52 a.m.•13 views

Cross site request forgery (csrf)

6.8CVSS7.9AI score0.00126EPSS

Exploits0References3Affected Software1

CVE•added 2008/12/18 9:0 p.m.•38 views

CVE-2008-5673

Technical details and impact for CVE-2008-5673 are not publicly provided in the supplied documents. Monitor for updates from NVD, CVE List, and related advisories.

6.5CVSS6.8AI score0.00294EPSS

Exploits0References3Affected Software1

Cvelist•added 2008/12/18 9:0 p.m.•12 views

CVE-2008-5673

PHParanoid before 0.4 does not properly restrict access to the members area by unauthenticated users, which has unknown impact and remote attack vectors...

6.8AI score0.00294EPSS

Exploits0References3

CVE•added 2008/12/18 9:0 p.m.•35 views

CVE-2008-5672

CVE-2008-5672 pertains to multiple cross-site request forgery (CSRF) vulnerabilities in PHParanoid prior to version 0.4. The issues allow remote attackers to hijack the authentication of arbitrary users for requests that use admin.php or private messages. The provided documents confirm the affect...

6.8CVSS7.4AI score0.00126EPSS

Exploits0References3Affected Software1

Cvelist•added 2008/12/18 9:0 p.m.•11 views

CVE-2008-5672

7.4AI score0.00126EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by