CVE-2012-1058 in Flysprayinfo

Summary

Cross-site request forgery (CSRF) vulnerability in Flyspray 0.9.9.6 allows remote attackers to hijack the authentication of admins for requests that add admin accounts via an admin.newuser action to index.php.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

02/13/2012

Disclosure

02/13/2012

CPE

ready

Exploit

Download

CVSS

5.5

EPSS

0.00294

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2012-1058
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2012-1058
CVE Detailshttps://www.cvedetails.com/cve/CVE-2012-1058/

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!