CyberSec.Space Logo
CVEブラウザに戻る

CVE-2021-20782

HIGH
8.8
CVSS Severity Score
EPSS Score0.1090%
EPSS Percentile43.23th
Published2021年7月14日
Last Modified2024年11月21日

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability in Software License Manager versions prior to 4.4.6 allows remote attackers to hijack the authentication of administrators via unspecified vectors.

Affected Platforms (CPE)

📦
Tipsandtricks Hq

Software License Manager

< 4.4.6

References & Advisories

🔗 https://jvn.jp/en/jp/JVN89054582/index.html
🔗 https://wordpress.org/plugins/software-license-manager/
🔗 https://www.tipsandtricks-hq.com/software-license-manager-plugin-for-wordpress
🔗 https://jvn.jp/en/jp/JVN89054582/index.html
🔗 https://wordpress.org/plugins/software-license-manager/
🔗 https://www.tipsandtricks-hq.com/software-license-manager-plugin-for-wordpress

関連する脆弱性情報

CVE-2020-31409.8

A vulnerability in the web management interface of Cisco Prime License Manager (PLM) Software could allow an unauthenticated, remo...

CVE-2021-247118.8

The del_reistered_domains AJAX action of the Software License Manager WordPress plugin before 4.5.1 does not have any CSRF checks,...

CVE-2020-34998.6

A vulnerability in the licensing service of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remot...

CVE-2020-102928.2

Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and robots in order toimprove planning a...