CVE-2013-2778

PHP Address Book 8.2.5 - Cross-Site Request Forgery via Delete User Endpoint

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in addressbook/register/delete_user.php in PHP Address Book 8.2.5 allows remote attackers to hijack the authentication of administrators for requests that delete accounts, a different vulnerability than CVE-2013-0135.1.

References (1)

Core 1
Core References

Scores

EPSS 0.0063
EPSS Percentile 45.9%

Details

CWE
CWE-352
Status published
Products (1)
chatelao/php_address_book 8.2.5
Published Apr 09, 2013
Tracked Since Feb 18, 2026