7.5
CVE-2006-3671
- EPSS 0.72%
- Veröffentlicht 18.07.2006 15:47:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCross-site request forgery (CSRF) vulnerability in the communicate function in estmaster.c for Hyper Estraier before 1.3.3 allows remote attackers to perform unauthorized actions as other users via unknown vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hyper Estraier ≫ Hyper Estraier Version <= 1.3.2
Hyper Estraier ≫ Hyper Estraier Version1.0
Hyper Estraier ≫ Hyper Estraier Version1.0.1
Hyper Estraier ≫ Hyper Estraier Version1.0.2
Hyper Estraier ≫ Hyper Estraier Version1.0.3
Hyper Estraier ≫ Hyper Estraier Version1.0.4
Hyper Estraier ≫ Hyper Estraier Version1.0.5
Hyper Estraier ≫ Hyper Estraier Version1.0.6
Hyper Estraier ≫ Hyper Estraier Version1.1.0
Hyper Estraier ≫ Hyper Estraier Version1.1.1
Hyper Estraier ≫ Hyper Estraier Version1.1.2
Hyper Estraier ≫ Hyper Estraier Version1.1.3
Hyper Estraier ≫ Hyper Estraier Version1.1.4
Hyper Estraier ≫ Hyper Estraier Version1.1.5
Hyper Estraier ≫ Hyper Estraier Version1.1.6
Hyper Estraier ≫ Hyper Estraier Version1.2.1
Hyper Estraier ≫ Hyper Estraier Version1.2.3
Hyper Estraier ≫ Hyper Estraier Version1.2.4
Hyper Estraier ≫ Hyper Estraier Version1.2.5
Hyper Estraier ≫ Hyper Estraier Version1.2.6
Hyper Estraier ≫ Hyper Estraier Version1.2.7
Hyper Estraier ≫ Hyper Estraier Version1.2.8
Hyper Estraier ≫ Hyper Estraier Version1.2.9
Hyper Estraier ≫ Hyper Estraier Version1.3.0
Hyper Estraier ≫ Hyper Estraier Version1.3.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.72% | 0.715 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|