Vulnerability Details CVE-2011-2934
A Cross Site Request Forgery (CSRF) vulnerability exists in the administrator functions in WebsiteBaker 2.8.1 and earlier due to inadequate confirmation for sensitive transactions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
Products affected by CVE-2011-2934
-
cpe:2.3:a:websitebaker:websitebaker:2.2.0
-
cpe:2.3:a:websitebaker:websitebaker:2.2.1
-
cpe:2.3:a:websitebaker:websitebaker:2.2.2
-
cpe:2.3:a:websitebaker:websitebaker:2.2.3
-
cpe:2.3:a:websitebaker:websitebaker:2.2.3-b
-
cpe:2.3:a:websitebaker:websitebaker:2.2.3-c
-
cpe:2.3:a:websitebaker:websitebaker:2.2.4
-
cpe:2.3:a:websitebaker:websitebaker:2.3.0
-
cpe:2.3:a:websitebaker:websitebaker:2.3.1
-
cpe:2.3:a:websitebaker:websitebaker:2.4.0
-
cpe:2.3:a:websitebaker:websitebaker:2.4.1
-
cpe:2.3:a:websitebaker:websitebaker:2.4.2
-
cpe:2.3:a:websitebaker:websitebaker:2.4.3
-
cpe:2.3:a:websitebaker:websitebaker:2.5.0
-
cpe:2.3:a:websitebaker:websitebaker:2.5.1
-
cpe:2.3:a:websitebaker:websitebaker:2.5.2
-
cpe:2.3:a:websitebaker:websitebaker:2.6.0
-
cpe:2.3:a:websitebaker:websitebaker:2.6.1
-
cpe:2.3:a:websitebaker:websitebaker:2.6.2
-
cpe:2.3:a:websitebaker:websitebaker:2.6.3
-
cpe:2.3:a:websitebaker:websitebaker:2.6.4
-
cpe:2.3:a:websitebaker:websitebaker:2.6.5
-
cpe:2.3:a:websitebaker:websitebaker:2.6.6
-
cpe:2.3:a:websitebaker:websitebaker:2.6.7
-
cpe:2.3:a:websitebaker:websitebaker:2.7.0
-
cpe:2.3:a:websitebaker:websitebaker:2.8.0
-
cpe:2.3:a:websitebaker:websitebaker:2.8.1