Lucene search

MitreCVE-2022-42070

HistoryOct 14, 2022 - 3:16 p.m.

CVE-2022-42070

2022-10-1415:16:24

CWE-352

mitre

web.nvd.nist.gov

cve-2022-42070

online birth certificate management system

csrf

vulnerability

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.001

Percentile

50.4%

JSON

Online Birth Certificate Management System version 1.0 is vulnerable to Cross Site Request Forgery (CSRF).

Affected configurations

Nvd

Node

online_birth_certificate_management_system_projectonline_birth_certificate_management_systemMatch1.0

VendorProductVersionCPE
online_birth_certificate_management_system_projectonline_birth_certificate_management_system1.0cpe:2.3:a:online_birth_certificate_management_system_project:online_birth_certificate_management_system:1.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
online_birth_certificate_management_system_project	online_birth_certificate_management_system	1.0	cpe:2.3:a:online_birth_certificate_management_system_project:online_birth_certificate_management_system:1.0:::::::*

References

packetstormsecurity.com/files/168522/Online-Birth-Certificate-Management-System-1.0-Cross-Site-Request-Forgery.html

www.sourcecodester.com/php/15683/online-birth-certificate-management-system-php-free-download.html

Social References

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.001

Percentile

50.4%

JSON

Related for CVE-2022-42070