CVE-2018-17789
MEDIUMProspecta Master Data Online - Cross-Site Request Forgery
Title source: llmDescription
Prospecta Master Data Online (MDO) allows CSRF.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/154498/Master-Data-Online-Cross-Site-Request-Forgery-Data-Tampering.html
Exploit, Third Party Advisory x_refsource_misc
https://packetstormsecurity.com/files/cve/CVE-2018-17789
Scores
CVSS v3
6.5
EPSS
0.0065
EPSS Percentile
46.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Details
CWE
CWE-352
Status
published
Products (1)
prospecta/master_data_online
Published
Sep 20, 2019
Tracked Since
Feb 18, 2026