Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the Realtyna RPL comrpl component before 8.9.5 for Joomla! allows remote attackers to hijack the authentication of administrators for requests that add a user via an adduser action to administrator/index.php...

CVE-2015-7715

The CVE covers a CSRF vulnerability in Realtyna RPL (com_rpl) for Joomla!, affecting versions prior to 8.9.5. The issue allows an attacker to hijack an administrator’s session by triggering an add_user action via administrator/index.php, enabling remote user creation without proper authorization....

CVE-2015-4586

Cross-site request forgery CSRF vulnerability in Alcatel-Lucent CellPipe 7130 RG 5Ae.M2013 HOL with firmware 1.0.0.20h.HOL allows remote attackers to hijack the authentication of administrators for requests that create a user account via an adduser action in a request to password.cmd...