NVD

Id
3145  
Name
CVE-2008-3262  
Description
Cross-site request forgery (CSRF) vulnerability in Claroline before 1.8.10 allows remote attackers to change passwords, related to lack of a requirement for the previous password.  
Reject
 
CVSS Version
2  
CVSS Score
5.8  
Severity
Medium  
CVSS Base Score
5.8  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:N)  
Pub Date
2017-01-03  
Published
2008-07-22  
Modified Date
2009-08-19  
Seq
2008-3262  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
19951 3145 CVE-2008-3262 4020  View
19952 3145 CVE-2008-3262 http://sourceforge.net/project/shownotes.php?release_id=613634  View
19953 3145 CVE-2008-3262 http://wiki.claroline.net/index.php/Changelog_1.8.x#Modification_between_claroline_1.8.9_and_1.8.10  View
19954 3145 CVE-2008-3262 20080718 [DSECRG-08-030] Claroline 1.8.9 Multiple Security Vulnerabilities  View
19955 3145 CVE-2008-3262 claroline-unknown-unspecified(43854)  View
19956 3145 CVE-2008-3262 claroline-unspecified-csrf(43974)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
47964 JVNDB-2008-003274 Claroline におけるクロスサイトリクエストフォージェリの脆弱性 Claroline には、以前のパスワードを要求しない不備があるため、クロスサイトリクエストフォージェリの脆弱性が存在します。 CVE-2008-3262 33375 CVE-2008-3262 3145 5.8 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-003274.html 2008-07-22 2012-06-26 View