CVE-2017-5264

HIGH

Rapid7 Nexpose < 6.4.66 - Cross-Site Request Forgery in Automated Actions

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-5264. PoCs published by Shwetabh Vishnoi.

AI-analyzed exploit summary This is a proof-of-concept for a CSRF vulnerability in Rapid7 Nexpose's Automated Actions feature. The exploit demonstrates how an attacker can craft a malicious HTML page to send unauthorized POST requests to the vulnerable endpoint, potentially triggering workflows without user consent.

Description

Versions of Nexpose prior to 6.4.66 fail to adequately validate the source of HTTP requests intended for the Automated Actions administrative web application, and are susceptible to a cross-site request forgery (CSRF) attack.

Exploits (1)

exploitdb WORKING POC
by Shwetabh Vishnoi · htmlwebappsmultiple
https://www.exploit-db.com/exploits/43911

This is a proof-of-concept for a CSRF vulnerability in Rapid7 Nexpose's Automated Actions feature. The exploit demonstrates how an attacker can craft a malicious HTML page to send unauthorized POST requests to the vulnerable endpoint, potentially triggering workflows without user consent.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: Rapid7 Nexpose (versions prior to 6.4.66)
No auth needed
Prerequisites: Victim must visit a malicious webpage while authenticated to the Nexpose server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/43911/
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/102208

Scores

CVSS v3 8.8
EPSS 0.0034
EPSS Percentile 56.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-352
Status published
Products (2)
rapid7/nexpose < 6.4.66
Rapid7/Nexpose 6.4.65 and prior
Published Dec 14, 2017
Tracked Since Feb 18, 2026