24 Avr 2017
CVE-2017-8082 - CVE Vulnerability
concrete5 8.1.0 has CSRF in Thumbnail Editor in the File Manager, which allows remote attackers to disable the entire installation by merely tricking an admin into viewing a malicious page involving the /tools/required/files/importers/imageeditor?fID=1&imgData= URI. This results in a site-wide denial of service making the site not accessible to any users or any administrators. (CVSS:0.0) (Last Update:2017-04-24)
Vulnerability Details : concrete5 8.1.0 has CSRF in Thumbnail Editor in the File Manager, which allows remote attackers to disable the entire installation by merely tricking an admin into viewing a malicious page involving the /tools/required/files/importers/imageeditor?fID=1&imgData= URI. This results in a site-wide denial of service making the site not accessible to any users or any administrators. Publish Date : 2017-04-24 Last Update Date : 2017-04-24 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-8082
- References For CVE-2017-8082
| ||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-8082There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |