Vulnerability Details CVE-2014-6299
Cross-site request forgery (CSRF) vulnerability in the mm_forum extension before 1.9.3 for TYPO3 allows remote attackers to hijack the authentication of users for requests that create posts via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.0%
CVSS Severity
CVSS v2 Score 6.8
References
Products affected by CVE-2014-6299
-
cpe:2.3:a:mm_forum_project:mm_forum:0.1.0
-
cpe:2.3:a:mm_forum_project:mm_forum:0.1.1
-
cpe:2.3:a:mm_forum_project:mm_forum:0.1.2
-
cpe:2.3:a:mm_forum_project:mm_forum:0.1.3
-
cpe:2.3:a:mm_forum_project:mm_forum:0.1.4
-
cpe:2.3:a:mm_forum_project:mm_forum:0.1.5
-
cpe:2.3:a:mm_forum_project:mm_forum:0.1.6
-
cpe:2.3:a:mm_forum_project:mm_forum:0.1.7
-
cpe:2.3:a:mm_forum_project:mm_forum:0.1.8
-
cpe:2.3:a:mm_forum_project:mm_forum:1.8.1
-
cpe:2.3:a:mm_forum_project:mm_forum:1.8.2
-
cpe:2.3:a:mm_forum_project:mm_forum:1.8.3
-
cpe:2.3:a:mm_forum_project:mm_forum:1.9.0
-
cpe:2.3:a:mm_forum_project:mm_forum:1.9.1
-
cpe:2.3:a:mm_forum_project:mm_forum:1.9.2