Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/01/21 12:0 a.m.4 views

CVE-2024-54792

A Cross-Site Request Forgery CSRF vulnerability has been found in SpagoBI v3.5.1 in the user administration panel. An authenticated user can lead another user into executing unwanted actions inside the application they are logged in, like adding, editing or deleting users...

7AI score0.00281EPSS
Exploits4References2
Positive Technologies
Positive Technologies
added 2025/01/21 12:0 a.m.5 views

PT-2025-3072 · Spagobi · Spagobi

Name of the Vulnerable Software and Affected Versions: SpagoBI version 3.5.1 Description: A Cross-Site Request Forgery CSRF issue has been found in the user administration panel. An authenticated user can lead another user into executing unwanted actions inside the application they are logged in,...

6.1CVSS6.2AI score0.00281EPSS
Exploits4References5
Cvelist
Cvelist
added 2025/01/21 12:0 a.m.14 views

CVE-2024-54792

A Cross-Site Request Forgery CSRF vulnerability has been found in SpagoBI v3.5.1 in the user administration panel. An authenticated user can lead another user into executing unwanted actions inside the application they are logged in, like adding, editing or deleting users...

0.00281EPSS
Exploits4References2
CVE
CVE
added 2025/01/21 12:0 a.m.55 views

CVE-2024-54792

CVE-2024-54792 : SpagoBI 3.5.1 is affected by a CSRF vulnerability in the user administration panel. An authenticated attacker can induce a logged-in admin to perform unwanted actions (e.g., add/edit/delete users) on behalf of the victim via crafted requests. The issue is demonstrated in multiple...

6.1CVSS6.7AI score0.00281EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder