CyberSec.Space Logo
Back to CVE Browser

CVE-2021-20782

HIGH
8.8
CVSS Severity Score
EPSS Score0.1090%
EPSS Percentile43.23th
PublishedJul 14, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability in Software License Manager versions prior to 4.4.6 allows remote attackers to hijack the authentication of administrators via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Tipsandtricks Hq

Software License Manager

< 4.4.6

References & Advisories

πŸ”— https://jvn.jp/en/jp/JVN89054582/index.html
πŸ”— https://wordpress.org/plugins/software-license-manager/
πŸ”— https://www.tipsandtricks-hq.com/software-license-manager-plugin-for-wordpress
πŸ”— https://jvn.jp/en/jp/JVN89054582/index.html
πŸ”— https://wordpress.org/plugins/software-license-manager/
πŸ”— https://www.tipsandtricks-hq.com/software-license-manager-plugin-for-wordpress

Related Vulnerabilities

CVE-2020-31409.8

A vulnerability in the web management interface of Cisco Prime License Manager (PLM) Software could allow an unauthenticated, remo...

CVE-2021-247118.8

The del_reistered_domains AJAX action of the Software License Manager WordPress plugin before 4.5.1 does not have any CSRF checks,...

CVE-2020-34998.6

A vulnerability in the licensing service of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remot...

CVE-2020-102928.2

Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and robots in order toimprove planning a...