CVE-2008-3868

EUVD-2008-3854
Cross-site request forgery (CSRF) vulnerability in Interact 2.4.1 allows remote attackers to hijack the authentication of super administrators for requests that create super administrator accounts.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 37%
Affected Products (NVD)
VendorProductVersion
cce-interactinteract
2.4.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/32434
http://secunia.com/secunia_research/2008-44/
http://securityreason.com/securityalert/4537
http://www.securityfocus.com/archive/1/497967/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/46269
http://secunia.com/advisories/32434
http://secunia.com/secunia_research/2008-44/
http://securityreason.com/securityalert/4537
http://www.securityfocus.com/archive/1/497967/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/46269