CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site request forgery CSRF vulnerability in IBM BigFix Remote Control before 9.1.3 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences...

8.8CVSS5.8AI score0.00114EPSS

Exploits0References4

Cvelist•added 2012/06/27 12:0 a.m.•18 views

CVE-2012-3799

Multiple cross-site request forgery CSRF vulnerabilities in the Maestro module 7.x-1.x before 7.x-1.2 for Drupal allow remote attackers to hijack the authentication of administrators for requests that 1 change workflows or 2 insert cross-site scripting XSS sequences...

6.6AI score0.00316EPSS

Exploits1References8

Prion•added 2012/02/14 12:55 a.m.•8 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in Mibew Messenger 1.6.4 and earlier allow remote attackers to hijack the authentication of operators for requests that insert cross-site scripting XSS sequences via the 1 address or 2 threadid parameters to operator/ban.php; or 3...

6CVSS6.9AI score0.00223EPSS

Exploits1References6Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by