14 Mai 2017
CVE-2017-8930 - CVE Vulnerability
Multiple cross-site request forgery (CSRF) vulnerabilities in Simple Invoices 2013.1.beta.8 allow remote attackers to hijack the authentication of admins for requests that can (1) create new administrator user accounts and take over the entire application, (2) create regular user accounts, or (3) change configuration parameters such as tax rates and the enable/disable status of PayPal payment modules. (CVSS:0.0) (Last Update:2017-05-14)
Vulnerability Details : Multiple cross-site request forgery (CSRF) vulnerabilities in Simple Invoices 2013.1.beta.8 allow remote attackers to hijack the authentication of admins for requests that can (1) create new administrator user accounts and take over the entire application, (2) create regular user accounts, or (3) change configuration parameters such as tax rates and the enable/disable status of PayPal payment modules. Publish Date : 2017-05-14 Last Update Date : 2017-05-14 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-8930
- References For CVE-2017-8930
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-8930There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |