CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0708

Multiple cross-site request forgery (CSRF) vulnerabilities in SemanticScuttle before 0.91 allow remote attackers to (1) hijack the authentication of administrators via unknown vectors or (2) hijack the authentication of arbitrary users via vectors involving the profile page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.1%

CVSS Severity

CVSS v2 Score 6.8

References

Products affected by CVE-2009-0708

Semanticscuttle » Semanticscuttle » Version: Any

cpe:2.3:a:semanticscuttle:semanticscuttle:*
Semanticscuttle » Semanticscuttle » Version: 0.85

cpe:2.3:a:semanticscuttle:semanticscuttle:0.85
Semanticscuttle » Semanticscuttle » Version: 0.86

cpe:2.3:a:semanticscuttle:semanticscuttle:0.86
Semanticscuttle » Semanticscuttle » Version: 0.87

cpe:2.3:a:semanticscuttle:semanticscuttle:0.87
Semanticscuttle » Semanticscuttle » Version: 0.88

cpe:2.3:a:semanticscuttle:semanticscuttle:0.88
Semanticscuttle » Semanticscuttle » Version: 0.89

cpe:2.3:a:semanticscuttle:semanticscuttle:0.89

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0708

Products

Pricing

Contact Us