CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-4280

Multiple cross-site request forgery (CSRF) vulnerabilities in admin/agenteditor.php in Free Realty 3.1-0.6 allow remote attackers to hijack the authentication of administrators for requests that (1) add an agent via an addagent action or (2) modify an agent.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.2%

CVSS Severity

CVSS v2 Score 6.8

References

http://secunia.com/advisories/49132
http://www.exploit-db.com/exploits/18874
http://www.securityfocus.com/bid/53491
http://www.vulnerability-lab.com/get_content.php?id=513
http://secunia.com/advisories/49132
http://www.exploit-db.com/exploits/18874
http://www.securityfocus.com/bid/53491
http://www.vulnerability-lab.com/get_content.php?id=513

Products affected by CVE-2012-4280

Rwcinc » Free Realty » Version: 3.1-0.6

cpe:2.3:a:rwcinc:free_realty:3.1-0.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4280

Products

Pricing

Contact Us