Vulnerability Details CVE-2015-6493
Cross-site request forgery (CSRF) vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x through 2.6.0 build 430 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.2%
CVSS Severity
CVSS v2 Score 6.8
Products affected by CVE-2015-6493
-
cpe:2.3:a:infinite_automation_systems:mango_automation:2.5.0
-
cpe:2.3:a:infinite_automation_systems:mango_automation:2.5.5
-
cpe:2.3:a:infinite_automation_systems:mango_automation:2.6.0