CyberSec.Space Logo
返回 CVE 浏览器

CVE-2016-1170

HIGH
8.8
CVSS Severity Score
EPSS Score0.0760%
EPSS Percentile21.83th
Published2016年4月6日
Last Modified2026年5月6日

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability in the Casebook plugin before 0.9.4 for baserCMS allows remote attackers to hijack the authentication of administrators.

Affected Platforms (CPE)

📦
Hiniarata

Casebook Plugin

<= 0.9.3

References & Advisories

🔗 http://jvn.jp/en/jp/JVN55801246/index.html
🔗 http://jvndb.jvn.jp/jvndb/JVNDB-2016-000045
🔗 https://hiniarata.jp/news/archives/55
🔗 http://jvn.jp/en/jp/JVN55801246/index.html
🔗 http://jvndb.jvn.jp/jvndb/JVNDB-2016-000045
🔗 https://hiniarata.jp/news/archives/55

相关漏洞威胁

CVE-2016-11696.1

Cross-site scripting (XSS) vulnerability in the Casebook plugin before 0.9.4 for baserCMS allows remote attackers to inject arbitr...

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

CVE-2026-48853

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...