Some Chess におけるクロスサイトリクエストフォージェリの脆弱性
| Title |
Some Chess におけるクロスサイトリクエストフォージェリの脆弱性
|
| Summary |
Some Chess には、クロスサイトリクエストフォージェリの脆弱性が存在します。
|
| Possible impacts |
第三者により、別のユーザとしてアクションを実行される可能性があります。 |
| Solution |
ベンダ情報および参考情報を参照して適切な対策を実施してください。 |
| Publication Date |
June 28, 2006, midnight |
| Registration Date |
March 11, 2014, 5:43 p.m. |
| Last Update |
March 11, 2014, 5:43 p.m. |
|
CVSS2.0 : 警告
|
| Score |
5
|
| Vector |
AV:N/AC:L/Au:N/C:N/I:P/A:N |
Affected System
| astrodog press |
|
some chess 1.5 rc2
|
CVE (情報セキュリティ 共通脆弱性識別子)
Change Log
| No |
Changed Details |
Date of change |
| 0 |
[2014年03月11日]
掲載 |
Feb. 17, 2018, 10:37 a.m. |
NVD Vulnerability Information
CVE-2006-3272
| Summary |
Cross-site request forgery (CSRF) vulnerability in menu.php in Some Chess 1.5 rc2 allows remote attackers to conduct actions as another user, such as changing usernames and passwords, via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
|
| Publication Date |
June 29, 2006, 7:05 a.m. |
| Registration Date |
Jan. 29, 2021, 3:40 p.m. |
| Last Update |
July 20, 2017, 10:32 a.m. |
Affected software configurations
| Configuration1 |
or higher |
or less |
more than |
less than |
| cpe:2.3:a:astrodog_press:some_chess:1.5_rc2:*:*:*:*:*:*:* |
|
|
|
|
Related information, measures and tools
Common Vulnerabilities List