CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-4750

Cross-site request forgery (CSRF) vulnerability in admin/libs/ADMIN.php in BLOG:CMS 4.2.1.e, and possibly earlier, allows remote attackers to hijack the authentication of administrators.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.0%

CVSS Severity

CVSS v2 Score 6.8

References

http://blogcms.com/
http://packetstormsecurity.org/files/view/96731/blogcms-xsrfxss.txt
http://securityreason.com/securityalert/8112
http://www.exploit-db.com/exploits/15743
http://www.htbridge.ch/advisory/xsrf_csrf_in_blogcms.html
http://blogcms.com/
http://packetstormsecurity.org/files/view/96731/blogcms-xsrfxss.txt
http://securityreason.com/securityalert/8112
http://www.exploit-db.com/exploits/15743
http://www.htbridge.ch/advisory/xsrf_csrf_in_blogcms.html

Products affected by CVE-2010-4750

Blogcms » Blog » Version: cms

cpe:2.3:a:blogcms:blog:cms

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-4750

Products

Pricing

Contact Us