CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-6631

Cross-site request forgery (CSRF) vulnerability in accounts/admin/index.php in Vessio NetBill 1.2 allows remote attackers to hijack the authentication of administrators for requests that add accounts via a new-client action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.8%

CVSS Severity

CVSS v2 Score 6.8

References

http://packetstormsecurity.org/files/112655/NetBill-Billing-System-1.2-CSRF-XSS.html
http://secunia.com/advisories/49109
http://www.osvdb.org/81881
http://www.vulnerability-lab.com/get_content.php?id=560
https://exchange.xforce.ibmcloud.com/vulnerabilities/75539
http://packetstormsecurity.org/files/112655/NetBill-Billing-System-1.2-CSRF-XSS.html
http://secunia.com/advisories/49109
http://www.osvdb.org/81881
http://www.vulnerability-lab.com/get_content.php?id=560
https://exchange.xforce.ibmcloud.com/vulnerabilities/75539

Products affected by CVE-2012-6631

Vessio » Netbill » Version: 1.2

cpe:2.3:a:vessio:netbill:1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-6631

Products

Pricing

Contact Us