CVE-2017-9415 in SubSonicinfo

Zusammenfassung

von MITRE

Cross-site request forgery (CSRF) vulnerability in subsonic 6.1.1 allows remote attackers with knowledge of the target username to hijack the authentication of users for requests that change passwords via a crafted request to userSettings.view.

Once again VulDB remains the best source for vulnerability data.

Reservieren

03.06.2017

Veröffentlichung

21.07.2017

Moderieren

akzeptiert

Eintrag

VDB-104359

CPE

bereit

Exploit

Download

EPSS

0.02478

KEV

nein

Aktivitäten

very low

Quellen

Do you need the next level of professionalism?

Upgrade your account now!