Vulnerability Details CVE-2012-4326
Cross-site request forgery (CSRF) vulnerability in commonsettings.php in AlstraSoft Site Uptime Enterprise, possibly 5.4, allows remote attackers to hijack the authentication of administrators.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.1%
CVSS Severity
CVSS v2 Score 6.8
References
- http://osvdb.org/80947
- http://packetstormsecurity.org/files/111563/AlstraSoft-Site-Uptime-Cross-Site-Request-Forgery.html
- http://secunia.com/advisories/48707
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74682
- http://osvdb.org/80947
- http://packetstormsecurity.org/files/111563/AlstraSoft-Site-Uptime-Cross-Site-Request-Forgery.html
- http://secunia.com/advisories/48707
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74682
Products affected by CVE-2012-4326
-
cpe:2.3:a:altrasoft:site_uptime_enterprise:5.4