Skip to main content

Auctionworx

1 CVEs product

Monthly

CVE-2022-23904 HIGH POC This Week

Rainworx Auctionworx < 3.1R2 is vulnerable to a Cross-Site Request Forgery (CSRF) attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Auctionworx
NVD
CVSS 3.1
8.0
EPSS
0.4%
EPSS 0% CVSS 8.0
HIGH POC This Week

Rainworx Auctionworx < 3.1R2 is vulnerable to a Cross-Site Request Forgery (CSRF) attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Auctionworx
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy