Veracode Vulnerability DatabaseVERACODE:39290Cross-Site Request Forgery (CSRF)
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
23.9%
openmage/magento-lts is vulnerable to Cross-Site Request Forgery (CSRF). The vulnerability exists in the resetPasswordPostAction function in AccountController.php because the user sessions are not properly managed which allows an attacker to change a user passwords.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openmage/magento-lts | le | v20.0.18 | |
| openmage/magento-lts | le | v19.4.21 | |
| openmage/magento-lts | le | v20.0.18 | |
| openmage/magento-lts | le | v19.4.21 |
References
github.com/OpenMage/magento-lts/commit/58e72cf939ecab61462e433eb755dedbc5be0767
github.com/OpenMage/magento-lts/commit/ce2e92833f22d6d5b095ba1d45f9615df673993b
github.com/OpenMage/magento-lts/releases/tag/v19.4.22
github.com/OpenMage/magento-lts/releases/tag/v20.0.19
github.com/OpenMage/magento-lts/security/advisories/GHSA-r3c9-9j5q-pwv4
hackerone.com/reports/1086752
Related
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
23.9%