Cross-Site Request Forgery Risk in eXtplorer by eXtplorer Team
CVE-2015-5660

Currently unrated

Key Information:

Vendor: Extplorer
Status: Extplorer
Vendor: CVE Published:; 16 October 2015

What is CVE-2015-5660?

A cross-site request forgery (CSRF) vulnerability exists in eXtplorer prior to version 2.1.8, enabling remote attackers to exploit the authentication of users. This can lead to unauthorized requests that may execute PHP code, compromising the security and integrity of the affected systems. It is crucial for users of eXtplorer to update to the latest version to mitigate this risk.

References

http://extplorer.net/news/18

x_refsource_CONFIRM

http://jvndb.jvn.jp/jvndb/JVNDB-2015-000126

third-party-advisoryx_refsource_JVNDB

http://jvn.jp/en/jp/JVN92520335/index.html

third-party-advisoryx_refsource_JVN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 16, 2015
Vulnerability Reserved
Jul 24, 2015

CVE-2015-5660 Data

JSON

Extplorer

What is CVE-2015-5660?

References

Timeline