CVE-2012-5542 in Commerce Extra Panesinfo

Zusammenfassung

von MITRE

Cross-site request forgery (CSRF) vulnerability in the Commerce Extra Panes module 7.x-1.x before 7.x-1.1 in Drupal allows remote attackers to hijack the authentication of administrators for requests that enable or disable a Commerce extra panes pane via unspecified vectors related to "the link to reorder items."

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

24.10.2012

Veröffentlichung

03.12.2012

Moderieren

akzeptiert

Eintrag

VDB-63122

CPE

bereit

CWE

CWE-352 (bestätigt)

CVSS

6.3 (VulDB)

EPSS

0.00711

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-5542
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-5542
CVE Details	https://www.cvedetails.com/cve/CVE-2012-5542/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!