Description
Cross-site request forgery (CSRF) vulnerability in lib/logout.php in DFLabs PTK 1.0.5 and earlier allows remote attackers to hijack the authentication of administrators or investigators for requests that trigger a logout.
Exploits (1)
References (1)
Core 1
Core References
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/18513/
Scores
EPSS
0.0033
EPSS Percentile
56.1%
Details
CWE
CWE-352
Status
published
Products (1)
dflabs/ptk
< 1.0.5
Published
Dec 28, 2014
Tracked Since
Feb 18, 2026