CVE-2011-2191 in Cherokeeinformación

Resumen

por MITRE

Cross-site request forgery (CSRF) vulnerability in Cherokee-admin in Cherokee before 1.2.99 allows remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting (XSS) sequences, as demonstrated by a crafted nickname field to vserver/apply.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

2011-05-31

Divulgación

2011-10-06

Moderación

aceptado

Artículo

VDB-58875

CPE

listo

EPSS

0.00592

KEV

no

Actividades

muy bajo

Fuentes

MITREhttps://www.cve.org/CVERecord?id=CVE-2011-2191
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2011-2191
CVE Detailshttps://www.cvedetails.com/cve/CVE-2011-2191/

AnteriorVisión De ConjuntoPróximo

Interested in the pricing of exploits?

See the underground prices here!