CVE-2015-6517

Phpliteadmin - CSRF

Title source: rule

Description

Cross-site request forgery (CSRF) vulnerability in phpLiteAdmin 1.1 allows remote attackers to hijack the authentication of users for requests that drop database tables via the droptable parameter to phpliteadmin.php.

Exploits (1)

exploitdb WRITEUP

webappsphp

https://www.exploit-db.com/exploits/37515

View Code ZIP pw:eip

References (2)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/132580/phpLiteAdmin-1.1-Cross-Site-Request-Forgery-Cross-Site-Scripting.html

[Exploit, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/535936/100/0/threaded

Scores

EPSS 0.0030

EPSS Percentile 53.3%

Details

CWE

CWE-352

Status published

Products (1)

phpliteadmin_project/phpliteadmin 1.1

Published Aug 18, 2015

Tracked Since Feb 18, 2026