CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-1947

Cross-site request forgery (CSRF) vulnerability in Invision Gallery before 1.3.1 allows remote attackers to delete albums and images as another user via a link or IMG tag to the (1) albums or (2) delimg actions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.7%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=111834146710329&w=2
http://www.gulftech.org/?node=research&article_id=00079-06092005
http://marc.info/?l=bugtraq&m=111834146710329&w=2
http://www.gulftech.org/?node=research&article_id=00079-06092005

Products affected by CVE-2005-1947

Invisioncommunity » Gallery » Version: N/A

cpe:2.3:a:invisioncommunity:gallery:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-1947

Products

Pricing

Contact Us