CVE-2013-4792 Information

Description

PrestaShop before 1.4.11 allows logout CSRF.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

Reference

http://davidsopaslabs.blogspot.com/2013/07/prestashop-persistent-xss-and-csrf.html

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

LOW

Availability Impact

LOW

Base Score

LOW

Base Severity

5.5