CVE-2005-3129
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
04/10/2005
Last modified:
11/07/2017
Description
Cross-site request forgery (CSRF) vulnerability in Serendipity 0.8.4 and earlier allows remote attackers to perform unauthorized actions as a logged in user via a link or IMG tag to serendipity_admin.php.
Impact
Base Score 2.0
5.10
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:s9y:serendipity:*:*:*:*:*:*:*:* | 0.8.4 (including) |
To consult the complete list of CPE names with products and versions, see this page