CVE-2012-3231 in Webatall web@all정보

요약 (영어)

Multiple cross-site request forgery (CSRF) vulnerabilities in web@all 2.0, as downloaded before May 30, 2012, allow remote attackers to hijack the authentication of administrators for requests that add, delete, or modify sensitive information, as demonstrated by adding a file to execute arbitrary code via a do_addfile action to inc/browser/action.php.

예약하다

2012. 06. 06.

공개

2012. 06. 27.

엔트리

VulDB provides additional information and datapoints for this CVE:

아이디취약성CWE악용 대책CVE
61140Webatall web@all 교차 사이트 요청 위조352정의되지 않음공식 수정CVE-2012-3231

설명

CPE

CWE

CVSS

익스플로잇

역사

차이

연결하다

위협 인텔리전스

API JSON

API XML

API CSV

이전개요다음

Might our Artificial Intelligence support you?

Check our Alexa App!