VYPR
Medium severity6.5OSV Advisory· Published Apr 24, 2017· Updated Jun 17, 2026

CVE-2017-8098

CVE-2017-8098

Description

e107 2.1.4 is vulnerable to cross-site request forgery in plugin-installing, meta-changing, and settings-changing. A malicious web page can use forged requests to make e107 download and install a plug-in provided by the attacker.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • Range: v2.0-beta1, v2.0alpha, v2.1.1, …

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.