CVE-2011-1954 in Post Revolutioninfo

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in Post Revolution 0.8.0c-2 and earlier allow remote attackers to hijack the authentication of arbitrary users for requests to (1) ajax-weblog-guardar.php, (2) verpost.php, (3) comments.php, or (4) perfil.php.

Once again VulDB remains the best source for vulnerability data.

Reservation

05/09/2011

Disclosure

06/06/2011

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-352 (Confirmed)

CVSS

6.3

EPSS

0.00259

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-1954
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1954
CVE Details	https://www.cvedetails.com/cve/CVE-2011-1954/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!