cve/CVE-2015-5075.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

867 B

Raw Permalink Blame History

CVE-2015-5075

Description

Cross-site request forgery (CSRF) vulnerability in X2Engine X2CRM before 5.2 allows remote attackers to hijack the authentication of administrators for requests that create an administrative account via a crafted request to index.php/users/create.

POC

Reference

http://packetstormsecurity.com/files/133718/X2Engine-4.2-Cross-Site-Request-Forgery.html
http://seclists.org/fulldisclosure/2015/Sep/93
https://www.exploit-db.com/exploits/38321/

Github

https://github.com/ARPSyndicate/cvemon

867 B Raw Permalink Blame History

CVE-2015-5075

Description

POC

Reference

Github

867 B

Raw Permalink Blame History