CVE-2009-4877

WebGUI < 7.7.14 - Cross-Site Request Forgery

Title source: llm
STIX 2.1

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in WebGUI before 7.7.14 allow remote attackers to hijack the authentication of users for unspecified requests via unknown vectors.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/55798
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35775
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/51668

Scores

EPSS 0.0059
EPSS Percentile 44.2%

Details

CWE
CWE-352
Status published
Products (50)
plainblack/webgui 7.3.12
plainblack/webgui 7.3.13
plainblack/webgui 7.3.14
plainblack/webgui 7.3.15
plainblack/webgui 7.3.16
plainblack/webgui 7.3.17
plainblack/webgui 7.3.18
plainblack/webgui 7.3.19
plainblack/webgui 7.3.20
plainblack/webgui 7.3.21
... and 40 more
Published May 26, 2010
Tracked Since Feb 18, 2026