CVE-2021-46080

Description

A Cross Site Request Forgery (CSRF) vulnerability exists in Vehicle Service Management System 1.0. An successful CSRF attacks leads to Stored Cross Site Scripting Vulnerability.

CVSS Version 3.1
CVSS Version 2.0

nvd
CVE ID: CVE-2021-46080
Base Score: 4.8
Base Severity: MEDIUM
Vector String:CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Impact Score: 2.7
Exploitability Score: 1.7

nvd
CVE ID: CVE-2021-46080
Base Score: 3.5
Base Severity: LOW
Vector String:AV:N/AC:M/Au:S/C:N/I:P/A:N

Proof Of Concept

plsanu

CVE-2021-46080 - A Cross Site Request Forgery (CSRF) vulnerability exists in Vehicle Service Management System 1.0. An successful CSRF attacks leads to Stored Cross Site Scripting Vulnerability.

Refrence: GitHub

plsanu

CVE-2021-46080 - A Cross Site Request Forgery (CSRF) vulnerability exists in Vehicle Service Management System 1.0. An successful CSRF attacks leads to Stored Cross Site Scripting Vulnerability.

Refrence: GitHub

Refrence: NVD

Description​

Proof Of Concept​

Description

Proof Of Concept