Lucene search
Veracode Vulnerability DatabaseVERACODE:38757HistoryJan 03, 2023 - 3:38 p.m.
Cross-Site Request Forgery (CSRF)
2023-01-0315:38:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
csrf
froxlor
admin pages
opcache
malicious link
0.001 Low
EPSS
Percentile
29.0%
froxlor/froxlor is vulnerable to cross-site request forgery. The vulnerability exists in the admin_apcuinfo.php and admin_opcacheinfo.php, allowing an attacker to trick the admin or reseller user to reset the OPCache just by sending the malicious link when the change_serversettings is set to 1
| CPE | Name | Operator | Version |
|---|---|---|---|
| froxlor/froxlor | le | 0.10.38.3 | |
| froxlor/froxlor | le | 0.10.38.3 |
Related
osv
osv
Froxlor vulnerable to Cross-Site Request Forgery
2022-12-31 09:30:42
CVE-2022-4867
2022-12-31 09:15:12
nvd
nvd
CVE-2022-4867
2022-12-31 09:15:12
cvelist
cvelist
CVE-2022-4867 Cross-Site Request Forgery (CSRF) in froxlor/froxlor
2022-12-31 00:00:00
huntr
huntr
Get based CSRF on Reset OP Cache functionality
2022-12-31 07:06:27
github
github
Froxlor vulnerable to Cross-Site Request Forgery
2022-12-31 09:30:42
cve
cve
CVE-2022-4867
2022-12-31 09:15:12
prion
prion
Cross site request forgery (csrf)
2022-12-31 09:15:00