CVE-2006-4582 in The Address Bookinfo

Summary

Cross-site request forgery (CSRF) vulnerability in The Address Book 1.04e allows remote attackers to perform unauthorized actions as other users via unspecified vectors, as demonstrated by deleting arbitrary users via the id parameter in a deleteuser action in users.php.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

09/06/2006

Disclosure

12/31/2006

Moderation

VulDB entry created

Entries

VDB-34121 (1)

CPE

ready

CWE

CWE-352 (Confirmed)

CVSS

4.3

EPSS

0.00502

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2006-4582
NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-4582
CVE Details	https://www.cvedetails.com/cve/CVE-2006-4582/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!