CVE-2015-9292

6kbbs 7.1 and 8.0 allows CSRF via portalchannel_ajax.php (id or code parameter) or admin.php (fileids parameter).

Published : 2019-08-08 21:15 Updated : 2019-08-15 14:44

6.8
CVSS Score More info
Score 6.8 / 10
6.8
Vendor Product Version URI
6kbbs 6kbbs 7.1 cpe:/a:6kbbs:6kbbs:7.1
6kbbs 6kbbs 8.0 cpe:/a:6kbbs:6kbbs:8.0
  1. 6kbbs (1) Search CVE
    1. 6kbbs (2) Search CVE
      1. 7.1
      2. 8.0

CWE

ID Name Description Links
CWE-352 Cross-Site Request Forgery (CSRF) The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request. CVE

Reference

History of changes

Date Event
2019-08-15 14:44
2019-08-08 21:15

New CVE