Vulnerability CVE-2013-7249

Vulnerability CVE-2013-7249

Published: 2014-01-02 Modified: 2014-01-03

Description:

	Topic	Author	Date
Med.	Fat Free CRM CSRF / SQL Injection / Known Secret	joernchen	24.12.2013

Type:

(Information Exposure)

CVSS Base Score	Impact Subscore	Exploitability Subscore
5/10	2.9/10	10/10

Affected software
Fatfreecrm -> Fat free crm

https://github.com/fatfreecrm/fat_free_crm/commit/cf26a04b356ad2161c4c6160260eb870a3de5328

https://github.com/fatfreecrm/fat_free_crm/wiki/Fixing-security-vulnerabilities-%2827th-Dec-2013%29

https://github.com/fatfreecrm/fat_free_crm/issues/300

http://www.phenoelit.org/stuff/ffcrm.txt

http://seclists.org/fulldisclosure/2013/Dec/199

http://openwall.com/lists/oss-security/2013/12/28/2