CVE-2010-5320

Multiple cross-site request forgery (CSRF) vulnerabilities in MemHT Portal 4.0.1 allow remote attackers to hijack the authentication of administrators for requests that (1) modify settings via a configuration action to admin.php, (2) modify articles via an articles action to admin.php, or (3) modify credentials via a users action to admin.php.

Published: Jan 3, 2015
Updated: Apr 13, 2023
CVE: CVE-2010-5320
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-352

Affected Software
References

Software	From	Fixed in
memht / memht_portal	4.0.1	4.0.1.x

https://www.htbridge.com/advisory/HTB22662

Vulnerability Database

290,020

CVE-2010-5320