CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-6827

Cross-site request forgery (CSRF) vulnerability in Auto-Exchanger 5.1.0 allows remote attackers to hijack the authentication of users for requests that change a password via a request to signup.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.2%

CVSS Severity

CVSS v2 Score 6.8

References

http://packetstormsecurity.com/files/133498/Autoexchanger-5.1.0-Cross-Site-Request-Forgery.html
https://www.exploit-db.com/exploits/38119/
http://packetstormsecurity.com/files/133498/Autoexchanger-5.1.0-Cross-Site-Request-Forgery.html
https://www.exploit-db.com/exploits/38119/

Products affected by CVE-2015-6827

Auto-Exchanger » Auto-Exchanger » Version: 5.1.0

cpe:2.3:a:auto-exchanger:auto-exchanger:5.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-6827

Products

Pricing

Contact Us