Description
Multiple cross-site request forgery (CSRF) vulnerabilities in WebGUI before 7.7.14 allow remote attackers to hijack the authentication of users for unspecified requests via unknown vectors.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/55798
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/35775
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/51668
Product x_refsource_confirm
http://sourceforge.net/project/shownotes.php?release_id=695900
Scores
EPSS
0.0059
EPSS Percentile
44.2%
Details
CWE
CWE-352
Status
published
Products (50)
plainblack/webgui
7.3.12
plainblack/webgui
7.3.13
plainblack/webgui
7.3.14
plainblack/webgui
7.3.15
plainblack/webgui
7.3.16
plainblack/webgui
7.3.17
plainblack/webgui
7.3.18
plainblack/webgui
7.3.19
plainblack/webgui
7.3.20
plainblack/webgui
7.3.21
... and 40 more
Published
May 26, 2010
Tracked Since
Feb 18, 2026