Lucene search
Veracode Vulnerability DatabaseVERACODE:7495HistorySep 17, 2018 - 9:18 a.m.
Cross Site Request Forgery (CSRF)
2018-09-1709:18:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
1
0.005 Low
EPSS
Percentile
75.3%
microweber/microweber is susceptible to a cross-site request forgery (CSRF) attack. It allows the attacker to add an administrative account via the api/save_user url by misleading an admin user to click on the malicious link.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber/microweber | le | 1.1.0.x-dev |
Related
cve
cve
CVE-2018-17104
2018-09-16 21:29:02
osv
osv
CVE-2018-17104
2018-09-16 21:29:02
nvd
nvd
CVE-2018-17104
2018-09-16 21:29:02
prion
prion
Cross site request forgery (csrf)
2018-09-16 21:29:00
cvelist
cvelist
CVE-2018-17104
2018-09-16 21:00:00