{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T01:22:15.235","vulnerabilities":[{"cve":{"id":"CVE-2009-1733","sourceIdentifier":"cve@mitre.org","published":"2009-05-20T19:30:00.217","lastModified":"2026-06-16T23:07:56.863","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site request forgery (CSRF) vulnerability in IPplan 4.91a allows remote attackers to hijack the authentication of administrators for requests that (1) change the password, (2) add users, or (3) delete users via unknown vectors."},{"lang":"es","value":"Vulnerabilidad de falsificación de petición en sitios cruzados (CSRF) en IPplan v4.91a permite a los atacantes remotos secuestrar la autenticación del administración, por peticiones que (1) cambian la contraseña, (2)añaden usuarios, o (3) borran usuarios a través de vectores desconocidos."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:richard_ellerbrock:ipplan:4.91a:*:*:*:*:*:*:*","matchCriteriaId":"14228614-7FE5-402B-8A02-BB2AFD2996B6"}]}]}],"references":[{"url":"http://holisticinfosec.org/content/view/113/45/","source":"cve@mitre.org"},{"url":"http://osvdb.org/54601","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/34985","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/50632","source":"cve@mitre.org"},{"url":"http://holisticinfosec.org/content/view/113/45/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://osvdb.org/54601","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/34985","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/50632","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}