Vulnerability Details CVE-2008-7204
Cross-site request forgery (CSRF) vulnerability in VirtueMart 1.0.13a and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 43.1%
CVSS Severity
CVSS v2 Score 6.8
References
- http://osvdb.org/41762
- http://secunia.com/advisories/28722
- http://virtuemart.net/index.php?option=com_content&task=view&id=276&Itemid=127
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40117
- http://osvdb.org/41762
- http://secunia.com/advisories/28722
- http://virtuemart.net/index.php?option=com_content&task=view&id=276&Itemid=127
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40117
Products affected by CVE-2008-7204
-
cpe:2.3:a:virtuemart:virtuemart:1.0.0
-
cpe:2.3:a:virtuemart:virtuemart:1.0.10
-
cpe:2.3:a:virtuemart:virtuemart:1.0.11
-
cpe:2.3:a:virtuemart:virtuemart:1.0.12
-
cpe:2.3:a:virtuemart:virtuemart:1.0.7
-
cpe:2.3:a:virtuemart:virtuemart:1.0.8
-
cpe:2.3:a:virtuemart:virtuemart:1.0.9
-
cpe:2.3:a:virtuemart:virtuemart:1.1