CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-2268

Cross-site request forgery (CSRF) vulnerability in authcfg.cgi in Accoria Web Server (aka Rock Web Server) 1.4.7 allows remote attackers to hijack the authentication of administrators for requests that create user accounts.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.5%

CVSS Severity

CVSS v2 Score 6.8

References

http://www.ioactive.com/pdfs/AccoriaWebServer.pdf
http://www.kb.cert.org/vuls/id/245081
http://www.ioactive.com/pdfs/AccoriaWebServer.pdf
http://www.kb.cert.org/vuls/id/245081

Products affected by CVE-2010-2268

Accoria » Rock Web Server » Version: 1.4.7

cpe:2.3:a:accoria:rock_web_server:1.4.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2268

Products

Pricing

Contact Us