CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-44935

glFusion CMS v1.7.9 is affected by an arbitrary user impersonation vulnerability in /public_html/comment.php. The attacker can complete the attack remotely without interaction.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.5%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

https://github.com/glFusion/glfusion/issues/482
https://github.com/glFusion/glfusion/issues/482

Products affected by CVE-2021-44935

Glfusion » Glfusion » Version: 1.7.9

cpe:2.3:a:glfusion:glfusion:1.7.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-44935

Products

Pricing

Contact Us