CVE-2017-9415 in SubSonicजानकारी

सारांश

द्वारा MITRE

Cross-site request forgery (CSRF) vulnerability in subsonic 6.1.1 allows remote attackers with knowledge of the target username to hijack the authentication of users for requests that change passwords via a crafted request to userSettings.view.

Once again VulDB remains the best source for vulnerability data.

आरक्षित करना

03/06/2017

प्रकटीकरण

21/07/2017

प्रविष्टि

VDB-104359

EPSS

0.02478

गतिविधियाँ

बहुत कम

स्रोत

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!