Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in IDE Group DVD Rental System (DRS) 5.1 before 20070801 allow remote attackers to perform certain actions as arbitrary users, as demonstrated by (1) modifying data or (2) canceling a subscription. NOTE: it is not clear whether IDE Group updates all DRS installations in its role as an application service provider. If so, then this issue should not be included in CVE.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IDE Group DRS多个跨站请求伪造漏洞
Vulnerability Description
IDE Group DVD Rental System (DRS) 20070801 5.1版本之前的版本的index.php中存在多个跨站请求伪造漏洞。远程攻击者可以像任意用户一样执行某些操作,例如(1)修改数据或(2)删除订阅。
CVSS Information
N/A
Vulnerability Type
N/A