Vulnerability Details CVE-2012-1203
Cross-site request forgery (CSRF) vulnerability in starnet/index.php in SyndeoCMS 3.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add user accounts via a save_user action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.6%
CVSS Severity
CVSS v2 Score 6.8
Products affected by CVE-2012-1203
-
cpe:2.3:a:syndeocms:syndeocms:2.4
-
cpe:2.3:a:syndeocms:syndeocms:2.4.10
-
cpe:2.3:a:syndeocms:syndeocms:2.5.00
-
cpe:2.3:a:syndeocms:syndeocms:2.5.01
-
cpe:2.3:a:syndeocms:syndeocms:2.6.00
-
cpe:2.3:a:syndeocms:syndeocms:2.7.00
-
cpe:2.3:a:syndeocms:syndeocms:2.8.00
-
cpe:2.3:a:syndeocms:syndeocms:2.8.02
-
cpe:2.3:a:syndeocms:syndeocms:2.8.1
-
cpe:2.3:a:syndeocms:syndeocms:2.9.00
-
cpe:2.3:a:syndeocms:syndeocms:3.0.00