CVE-2007-5259

Ilient SysAid 4.5.03 and 4.5.04 - Cross-Site Request Forgery

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in Ilient SysAid 4.5.03 and 4.5.04 allows remote attackers to perform some actions as administrators, as demonstrated by changing the administrator password. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

References (3)

Core 3
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27026
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37663
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/25885

Scores

EPSS 0.0052
EPSS Percentile 40.7%

Details

CWE
CWE-352
Status published
Products (2)
ilient/sysaid 4.5.03
ilient/sysaid 4.5.04
Published Oct 06, 2007
Tracked Since Feb 18, 2026