Lucene search
MitreCVELIST:CVE-2017-9413HistoryJul 25, 2017 - 6:00 p.m.
CVE-2017-9413
2017-07-2518:00:00
mitre
www.cve.org
5
Multiple cross-site request forgery (CSRF) vulnerabilities in the Podcast feature in Subsonic 6.1.1 allow remote attackers to hijack the authentication of users for requests that (1) subscribe to a podcast via the add parameter to podcastReceiverAdmin.view or (2) update Internet Radio Settings via the urlRedirectCustomUrl parameter to networkSettings.view. NOTE: These vulnerabilities can be exploited to conduct server-side request forgery (SSRF) attacks.
Related
exploitpack
exploitpack
Subsonic 6.1.1 - Server-Side Request Forgery
2017-06-05 00:00:00
zdt
zdt
Subsonic 6.1.1 - Server-Side Request Forgery Vulnerability
2017-06-05 00:00:00
prion
prion
Cross site request forgery (csrf)
2017-07-25 18:29:00
exploitdb
exploitdb
Subsonic 6.1.1 - Server-Side Request Forgery
2017-06-05 00:00:00
nvd
nvd
CVE-2017-9413
2017-07-25 18:29:01
cve
cve
CVE-2017-9413
2017-07-25 18:29:01
packetstorm
packetstorm
Subsonic 6.1.1 Server Side Request Forgery
2017-06-03 00:00:00