CVE-2012-3473
Published
CVSS v3
N/A
CVSS v2
6.4
MEDIUM
Affected
1
PROJECT
Description
The (1) reports API and (2) administration feature in the comments API in the Ushahidi Platform before 2.5 do not require authentication, which allows remote attackers to generate reports and organize comments via API functions.
Ushahidi v2. A platform that allows information collection, visualization and interactive mapping, allowing anyone to submit information through text messaging using a mobile phone, email or web form.
GitHub