CVE-2012-4324

EPSS 0.13% · P32 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-4324

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability in PHPJabbers Vacation Rental Script allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts via a create action in the AdminUsers module to index.php.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

PHPJabbers Vacation Rental Script 跨站请求伪造漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

PHPJabbers Vacation Rental Script中存在跨站请求伪造(CSRF)漏洞。远程攻击者可利用该漏洞通过传递到index.php脚本中的AdminUsers模块中的创建操作，劫持管理员添加管理员账户的请求的认证。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-4324

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-4324

请登录查看更多情报信息。

http://packetstormsecurity.org/files/111564/Vacation-Rental-Listing-Cross-Site-Request-Forgery.htmlx_refsource_MISC
🔗 http://osvdb.org/80948vdb-entryx_refsource_OSVDB
https://exchange.xforce.ibmcloud.com/vulnerabilities/74683vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2012-4324

Same Patch Batch · n/a · 2012-08-14 · 38 CVEs total

CVE-2012-4333		Samsung NET-i ware多个拒绝服务和远程代码执行漏洞
CVE-2012-2298		Drupal ‘RealName’ 模块跨站脚本漏洞
CVE-2012-2299		Drupal ‘Ubercart’ 模块多个安全漏洞
CVE-2012-2300		Drupal Ubercart模块多个跨站脚本漏洞
CVE-2012-2304		Drupal ‘Linkit’ 模块安全绕过漏洞
CVE-2012-4328		vBulletin 未明安全漏洞
CVE-2012-4329		Samsung TV和BD产品拒绝服务漏洞
CVE-2012-4330		Samsung D6000 TV 缓冲区错误漏洞
CVE-2012-4331		SPIP 多个未明安全漏洞
CVE-2012-4332		WordPress ‘ShareYourCart’ 插件路径泄露漏洞
CVE-2012-2209		Piwigo多个跨站脚本漏洞
CVE-2012-4334		Samsung NET-i viewer 任意代码执行漏洞
CVE-2012-4335		Samsung NET-i viewer 拒绝服务漏洞
CVE-2012-1835		WordPress ‘All-in-One Event Calendar’ 插件多个跨站脚本漏洞
CVE-2012-2096		Drupal ‘Fivestar’ 模块安全限制绕过漏洞
CVE-2012-2097		Drupal ‘Autosave’ 跨站请求伪造漏洞
CVE-2012-4325		Utopia News Pro 跨站请求伪造漏洞
CVE-2012-4326		AlstraSoft Site Uptime Enterprise 跨站请求伪造漏洞
CVE-2012-4327		WordPress ‘Image News slider’插件未明安全漏洞
CVE-2012-2081		Drupal Organic Groups模块敏感信息漏洞

Showing top 20 of 38 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-4324

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2012-4324

I. Basic Information for CVE-2012-4324

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2012-4324

III. Intelligence Information for CVE-2012-4324

Same Patch Batch · n/a · 2012-08-14 · 38 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2012-4324

Leave a comment