Cross-site request forgery (CSRF) vulnerability in bingo!CMS 1.2 and earlier allows remote attackers to hijack the authentication of other users for requests that modify configuration or change content via unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/52838
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000058.html
http://jvn.jp/en/jp/JVN68640473/index.html
Source: Mitre, NVD
Published: 2009-08-31
Updated: 2026-06-16
Base Score: 6.8
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
Severity: Medium
Base Score: 6.5
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS: 0.00161