CVE-2013-2778
PHP Address Book 8.2.5 - Cross-Site Request Forgery via Delete User Endpoint
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in addressbook/register/delete_user.php in PHP Address Book 8.2.5 allows remote attackers to hijack the authentication of administrators for requests that delete accounts, a different vulnerability than CVE-2013-0135.1.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
http://www.acadion.nl/labs/advisory/20130203-phpaddressbook.html
Scores
EPSS
0.0063
EPSS Percentile
45.9%
Details
CWE
CWE-352
Status
published
Products (1)
chatelao/php_address_book
8.2.5
Published
Apr 09, 2013
Tracked Since
Feb 18, 2026