CVE-2015-2983

Cross-site request forgery (CSRF) vulnerability in admin.php in PHP Kobo Photo Gallery CMS for PC, smartphone and feature phone 1.0.1 Free and earlier allows remote attackers to hijack the authentication of arbitrary users.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
jpcertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 33%
VendorProductVersion
php_kobophoto_gallery_cms_free
1.0.0
php_kobophoto_gallery_cms_free
1.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://jvn.jp/en/jp/JVN78240242/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000114
http://www.php-factory.net/trivia/16.php
http://jvn.jp/en/jp/JVN78240242/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000114
http://www.php-factory.net/trivia/16.php