Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2011-3381

Cross-site request forgery (CSRF) vulnerability in Phorum before 5.2.16 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Published

2011-09-08T18:55:01.677

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 6.8 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

  • Access Vector: NETWORK
  • Access Complexity: MEDIUM
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: PARTIAL
  • Availability Impact: PARTIAL
Exploitability Score

8.6

Impact Score

6.4

Weaknesses
  • Type: Primary
    CWE-352
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application phorum phorum ≤ 5.2.15 Yes
Application phorum phorum 3.0.7 Yes
Application phorum phorum 3.1 Yes
Application phorum phorum 3.1.1 Yes
Application phorum phorum 3.1.1_pre Yes
Application phorum phorum 3.1.1_rc2 Yes
Application phorum phorum 3.1.1a Yes
Application phorum phorum 3.1.2 Yes
Application phorum phorum 3.2 Yes
Application phorum phorum 3.2.2 Yes
Application phorum phorum 3.2.3 Yes
Application phorum phorum 3.2.3a Yes
Application phorum phorum 3.2.3b Yes
Application phorum phorum 3.2.4 Yes
Application phorum phorum 3.2.5 Yes
Application phorum phorum 3.2.6 Yes
Application phorum phorum 3.2.7 Yes
Application phorum phorum 3.2.8 Yes
Application phorum phorum 3.3.1 Yes
Application phorum phorum 3.3.1a Yes
Application phorum phorum 3.3.2 Yes
Application phorum phorum 3.3.2a Yes
Application phorum phorum 3.3.2b3 Yes
Application phorum phorum 3.4 Yes
Application phorum phorum 3.4.1 Yes
Application phorum phorum 3.4.2 Yes
Application phorum phorum 3.4.3 Yes
Application phorum phorum 3.4.4 Yes
Application phorum phorum 3.4.5 Yes
Application phorum phorum 3.4.6 Yes
Application phorum phorum 3.4.7 Yes
Application phorum phorum 3.4.8 Yes
Application phorum phorum 3.4.8a Yes
Application phorum phorum 4.3.7 Yes
Application phorum phorum 5.0.0_alpha Yes
Application phorum phorum 5.0.1_alpha Yes
Application phorum phorum 5.0.2_alpha Yes
Application phorum phorum 5.0.3_beta Yes
Application phorum phorum 5.0.4_beta Yes
Application phorum phorum 5.0.4a_beta Yes
Application phorum phorum 5.0.5_beta Yes
Application phorum phorum 5.0.6_beta Yes
Application phorum phorum 5.0.7_beta Yes
Application phorum phorum 5.0.7a_beta Yes
Application phorum phorum 5.0.8_rc Yes
Application phorum phorum 5.0.9 Yes
Application phorum phorum 5.0.10 Yes
Application phorum phorum 5.0.11 Yes
Application phorum phorum 5.0.12 Yes
Application phorum phorum 5.0.13 Yes
Application phorum phorum 5.0.13a Yes
Application phorum phorum 5.0.14 Yes
Application phorum phorum 5.0.14a Yes
Application phorum phorum 5.0.15 Yes
Application phorum phorum 5.0.15a Yes
Application phorum phorum 5.0.16 Yes
Application phorum phorum 5.0.17 Yes
Application phorum phorum 5.0.17a Yes
Application phorum phorum 5.0.18 Yes
Application phorum phorum 5.0.19 Yes
Application phorum phorum 5.0.20 Yes
Application phorum phorum 5.1.13 Yes
Application phorum phorum 5.1.14 Yes
Application phorum phorum 5.1.17 Yes
Application phorum phorum 5.1.18 Yes
Application phorum phorum 5.1.20 Yes
Application phorum phorum 5.1.21 Yes
Application phorum phorum 5.1.25 Yes
Application phorum phorum 5.2 Yes
Application phorum phorum 5.2.1 Yes
Application phorum phorum 5.2.2 Yes
Application phorum phorum 5.2.3 Yes
Application phorum phorum 5.2.4 Yes
Application phorum phorum 5.2.5 Yes
Application phorum phorum 5.2.8 Yes
Application phorum phorum 5.2.9 Yes
Application phorum phorum 5.2.10 Yes
Application phorum phorum 5.2.10 Yes
Application phorum phorum 5.2.11 Yes
Application phorum phorum 5.2.12 Yes
Application phorum phorum 5.2.12a Yes
Application phorum phorum 5.2.13 Yes
Application phorum phorum 5.2.14 Yes
References