CVE-2011-2191

NONE EPSS 69.1%
Published Oct 7, 201114y ago · Modified Jun 16, 20262w ago
Find Similar
Published Oct 7, 2011 14y ago
Last Modified Jun 16, 2026 2w ago

Description

Cross-site request forgery (CSRF) vulnerability in Cherokee-admin in Cherokee before 1.2.99 allows remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting (XSS) sequences, as demonstrated by a crafted nickname field to vserver/apply.

Threat Intelligence

EPSS Exploit Probability
69.1% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-352 Cross-Site Request Forgery (CSRF) Authentication

Affected Products 137

VendorProductVersionRange
cherokee-projectcherokee* ≤1.2.98
cherokee-projectcherokee0.3.0any
cherokee-projectcherokee0.4.0any
cherokee-projectcherokee0.4.1any
cherokee-projectcherokee0.4.2any
cherokee-projectcherokee0.4.3any
cherokee-projectcherokee0.4.4any
cherokee-projectcherokee0.4.5any
cherokee-projectcherokee0.4.6any
cherokee-projectcherokee0.4.7any
cherokee-projectcherokee0.4.8any
cherokee-projectcherokee0.4.9any
cherokee-projectcherokee0.4.10any
cherokee-projectcherokee0.4.11any
cherokee-projectcherokee0.4.12any
cherokee-projectcherokee0.4.13any
cherokee-projectcherokee0.4.14any
cherokee-projectcherokee0.4.15any
cherokee-projectcherokee0.4.16any
cherokee-projectcherokee0.4.17any
cherokee-projectcherokee0.4.18any
cherokee-projectcherokee0.4.19any
cherokee-projectcherokee0.4.20any
cherokee-projectcherokee0.4.21any
cherokee-projectcherokee0.4.22any
cherokee-projectcherokee0.4.23any
cherokee-projectcherokee0.4.24any
cherokee-projectcherokee0.4.25any
cherokee-projectcherokee0.4.26any
cherokee-projectcherokee0.4.27any
cherokee-projectcherokee0.4.28any
cherokee-projectcherokee0.4.29any
cherokee-projectcherokee0.4.30any
cherokee-projectcherokee0.5.0any
cherokee-projectcherokee0.5.1any
cherokee-projectcherokee0.5.2any
cherokee-projectcherokee0.5.3any
cherokee-projectcherokee0.5.4any
cherokee-projectcherokee0.5.5any
cherokee-projectcherokee0.5.6any
cherokee-projectcherokee0.6.0any
cherokee-projectcherokee0.6.1any
cherokee-projectcherokee0.7.0any
cherokee-projectcherokee0.7.1any
cherokee-projectcherokee0.7.2any
cherokee-projectcherokee0.8.0any
cherokee-projectcherokee0.8.1any
cherokee-projectcherokee0.9.0any
cherokee-projectcherokee0.9.1any
cherokee-projectcherokee0.9.2any
cherokee-projectcherokee0.9.3any
cherokee-projectcherokee0.9.4any
cherokee-projectcherokee0.10.0any
cherokee-projectcherokee0.10.1any
cherokee-projectcherokee0.11.0any
cherokee-projectcherokee0.11.1any
cherokee-projectcherokee0.11.2any
cherokee-projectcherokee0.11.3any
cherokee-projectcherokee0.11.4any
cherokee-projectcherokee0.11.5any
cherokee-projectcherokee0.11.6any
cherokee-projectcherokee0.98.0any
cherokee-projectcherokee0.98.1any
cherokee-projectcherokee0.99.0any
cherokee-projectcherokee0.99.1any
cherokee-projectcherokee0.99.2any
cherokee-projectcherokee0.99.3any
cherokee-projectcherokee0.99.4any
cherokee-projectcherokee0.99.5any
cherokee-projectcherokee0.99.6any
cherokee-projectcherokee0.99.07any
cherokee-projectcherokee0.99.8any
cherokee-projectcherokee0.99.9any
cherokee-projectcherokee0.99.10any
cherokee-projectcherokee0.99.11any
cherokee-projectcherokee0.99.12any
cherokee-projectcherokee0.99.13any
cherokee-projectcherokee0.99.14any
cherokee-projectcherokee0.99.15any
cherokee-projectcherokee0.99.16any
cherokee-projectcherokee0.99.17any
cherokee-projectcherokee0.99.18any
cherokee-projectcherokee0.99.19any
cherokee-projectcherokee0.99.20any
cherokee-projectcherokee0.99.21any
cherokee-projectcherokee0.99.22any
cherokee-projectcherokee0.99.23any
cherokee-projectcherokee0.99.24any
cherokee-projectcherokee0.99.25any
cherokee-projectcherokee0.99.26any
cherokee-projectcherokee0.99.27any
cherokee-projectcherokee0.99.28any
cherokee-projectcherokee0.99.29any
cherokee-projectcherokee0.99.30any
cherokee-projectcherokee0.99.31any
cherokee-projectcherokee0.99.32any
cherokee-projectcherokee0.99.33any
cherokee-projectcherokee0.99.34any
cherokee-projectcherokee0.99.35any
cherokee-projectcherokee0.99.36any
cherokee-projectcherokee0.99.37any
cherokee-projectcherokee0.99.38any
cherokee-projectcherokee0.99.39any
cherokee-projectcherokee0.99.40any
cherokee-projectcherokee0.99.41any
cherokee-projectcherokee0.99.42any
cherokee-projectcherokee0.99.43any
cherokee-projectcherokee0.99.44any
cherokee-projectcherokee0.99.45any
cherokee-projectcherokee0.99.46any
cherokee-projectcherokee0.99.47any
cherokee-projectcherokee0.99.48any
cherokee-projectcherokee0.99.49any
cherokee-projectcherokee1.0.0any
cherokee-projectcherokee1.0.1any
cherokee-projectcherokee1.0.2any
cherokee-projectcherokee1.0.3any
cherokee-projectcherokee1.0.4any
cherokee-projectcherokee1.0.5any
cherokee-projectcherokee1.0.6any
cherokee-projectcherokee1.0.7any
cherokee-projectcherokee1.0.8any
cherokee-projectcherokee1.0.9any
cherokee-projectcherokee1.0.10any
cherokee-projectcherokee1.0.11any
cherokee-projectcherokee1.0.12any
cherokee-projectcherokee1.0.13any
cherokee-projectcherokee1.0.14any
cherokee-projectcherokee1.0.15any
cherokee-projectcherokee1.0.16any
cherokee-projectcherokee1.0.17any
cherokee-projectcherokee1.0.18any
cherokee-projectcherokee1.0.19any
cherokee-projectcherokee1.0.20any
cherokee-projectcherokee1.2.0any
cherokee-projectcherokee1.2.1any
cherokee-projectcherokee1.2.2any

References 10

Remediation