CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Phpfox: >> Phpfox >> 1.6.2.1 Security Vulnerabilities

CVE-2009-0969

Cross-site request forgery (CSRF) vulnerability in account/settings/account/index.php in phpFoX 1.6.21 allows remote attackers to hijack the authentication of administrators for requests that change the email address via the act[update] action.

CVSS Score

6.8

EPSS Score

0.002

Published

2009-03-19

Page 1

Vulnerabilities

Vulnerable Software

Phpfox: >> Phpfox >> 1.6.2.1 Security Vulnerabilities

Products

Pricing

Contact Us