Lucene search
MitreCVE-2011-4452HistorySep 05, 2012 - 8:55 p.m.
CVE-2011-4452
2012-09-0520:55:01
CWE-352
mitre
web.nvd.nist.gov
794
cve-2011-4452
cross-site request forgery
csrf
wikkawiki
adminusers
vulnerability
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.003
Percentile
68.3%
Cross-site request forgery (CSRF) vulnerability in the AdminUsers component in WikkaWiki 1.3.1 and 1.3.2 allows remote attackers to hijack the authentication of administrators for requests that remove arbitrary user accounts via a delete operation, as demonstrated by an {{image}} action.
Affected configurations
Node
wikkawikiwikkawikiMatch1.3.1
ORwikkawikiwikkawikiMatch1.3.2
Related
nvd
nvd
CVE-2011-4452
2012-09-05 20:55:01
prion
prion
Cross site request forgery (csrf)
2012-09-05 20:55:00
cvelist
cvelist
CVE-2011-4452
2012-09-05 20:00:00
exploitpack
exploitpack
WikkaWiki 1.3.2 - Multiple Vulnerabilities
2011-11-30 00:00:00
packetstorm
packetstorm
WikkaWiki 1.3.2 Code Execution / Shell Upload / SQL Injection
2011-11-30 00:00:00
seebug
seebug
WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities
2011-12-01 00:00:00
WikkaWiki <= 1.3.2 - Multiple Security Vulnerabilities
2014-07-01 00:00:00
exploitdb
exploitdb
WikkaWiki 1.3.2 - Multiple Vulnerabilities
2011-11-30 00:00:00
securityvulns
securityvulns
WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities
2011-12-04 00:00:00
zdt
zdt
WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities
2011-11-30 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.003
Percentile
68.3%
Related for CVE-2011-4452