Cross site request forgery (csrf)

2011-12-2419:55:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

31.9%

JSON

Multiple cross-site request forgery (CSRF) vulnerabilities in Wuzly 2.0 allow remote attackers to hijack the authentication of administrators for requests that (1) add an administrator, (2) perform cross-site scripting (XSS), (3) perform SQL injection, or have other unspecified impact via unknown vectors.

CPENameOperatorVersion
wuzlyeq2.0

CPE	Name	Operator	Version
	wuzly	eq	2.0

References

osvdb.org/77911

secunia.com/advisories/46163

secunia.com/secunia_research/2011-85/

exchange.xforce.ibmcloud.com/vulnerabilities/71901