Vulnerability Description
A vulnerability was found in Supsystic Popup Plugin 1.7.6 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Supsystic | Popup | 1.7.6 |
Related Weaknesses (CWE)
References
- http://seclists.org/fulldisclosure/2017/Feb/97Mailing ListThird Party Advisory
- https://map.httpcs.com/alert/284665Third Party Advisory
- https://vuldb.com/?id.97385Third Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/41485/ExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2017/Feb/97Mailing ListThird Party Advisory
- https://map.httpcs.com/alert/284665Third Party Advisory
- https://vuldb.com/?id.97385Third Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/41485/ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2017-20065?
CVE-2017-20065 is a vulnerability with a CVSS score of 4.3 (MEDIUM). A vulnerability was found in Supsystic Popup Plugin 1.7.6 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The attack ma...
How severe is CVE-2017-20065?
CVE-2017-20065 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-20065?
Check the references section above for vendor advisories and patch information. Affected products include: Supsystic Popup.