CVE-2014-2989
Open Assessment Technologies Tao - CSRF
Title source: ruleDescription
Cross-site request forgery (CSRF) vulnerability in Open Assessment Technologies TAO 2.5.6 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via a request to Users/add.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by High-Tech Bridge · htmlwebappsphp
https://www.exploit-db.com/exploits/39176
Scores
EPSS
0.0017
EPSS Percentile
38.2%
Details
CWE
CWE-352
Status
published
Products (1)
open_assessment_technologies_/tao
2.5.6
Published
May 13, 2014
Tracked Since
Feb 18, 2026