Lucene search

K

MitreCVELIST:CVE-2017-6914

HistoryMar 15, 2017 - 4:00 p.m.

CVE-2017-6914

2017-03-1516:00:00

mitre

www.cve.org

4

cve-2017-6914

csrf

bigtree cms

AI Score

7.1

Confidence

High

EPSS

0.001

Percentile

29.8%

CSRF exists in BigTree CMS 4.1.18 and 4.2.16 with the id parameter to the admin/ajax/users/delete/ page. A user can be deleted.

References

github.com/bigtreecms/BigTree-CMS/files/843734/BigTree.-.Multiple.Issue.of.CSRF.that.could.Illegally.Few.Data.Changes.v02.pdf

github.com/bigtreecms/BigTree-CMS/issues/275

AI Score

7.1

Confidence

High

EPSS

0.001

Percentile

29.8%

Related for CVELIST:CVE-2017-6914

nvd1 osv1 cve1 prion1 openvas1 nessus1