Vulnerability Details CVE-2019-12273
OutSystems Platform 10 through 11 allows ImageResourceDetail.aspx CSRF for content modifications and file uploads. NOTE: The product is self-hosted by the customer, even though it has a *.outsystemsenterprise.com domain name.) NOTE: The vendor claims that the independent researcher created the report without any type of validation and that no such vulnerability exists
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.0%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
Products affected by CVE-2019-12273
-
cpe:2.3:a:outsystems:outsystems:10
-
cpe:2.3:a:outsystems:outsystems:10.0.1019.0
-
cpe:2.3:a:outsystems:outsystems:10.0.1104.0
-
cpe:2.3:a:outsystems:outsystems:11