EUVD-2011-5197

Malware in sbrugna...

CVE-2011-5298

Multiple cross-site request forgery CSRF vulnerabilities in Argyle Social 2011-04-26 allow remote attackers to hijack the authentication of administrators for requests that 1 modify credentials via the role parameter to users/create/, 2 modify rules via the terms field in streamfilterrule JSON da...

Multiple Cross-Site Request Forgery Vulnerabilities in Viralheat Argyle Social

Viralheat Argyle Social is a suite of enterprise social media platforms from Viralheat USA. Argyle Social suffers from multiple cross-site request forgery vulnerabilities that allow remote attackers to hijack administrator authentication requests...

CVE-2011-5298

Multiple cross-site request forgery CSRF vulnerabilities in Argyle Social 2011-04-26 allow remote attackers to hijack the authentication of administrators for requests that 1 modify credentials via the role parameter to users/create/, 2 modify rules via the terms field in streamfilterrule JSON da...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in Argyle Social 2011-04-26 allow remote attackers to hijack the authentication of administrators for requests that 1 modify credentials via the role parameter to users/create/, 2 modify rules via the terms field in streamfilterrule JSON da...

CVE-2011-5298

Multiple cross-site request forgery CSRF vulnerabilities in Argyle Social 2011-04-26 allow remote attackers to hijack the authentication of administrators for requests that 1 modify credentials via the role parameter to users/create/, 2 modify rules via the terms field in streamfilterrule JSON da...

CVE-2011-5298

Argyle Social (CVE-2011-5298) is affected by multiple CSRF vulnerabilities. The issues allow remote attackers to hijack administrator sessions for requests that (1) modify credentials via the role parameter to users/create/, (2) modify rules via the terms field in stream_filter_rule JSON data to ...

HTB22978: XSRF (CSRF) in Argyle Social

Vulnerability ID: HTB22978 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinargylesocial.html Product: Argyle Social Vendor: Argyle Social http://argylesocial.com/ Vulnerable Version: Current at 26/04/2011 Vendor Notification: 28 April 2011 Vulnerability Type: CSRF Cross-Site Request Forgery...

HTB22979: Multiple XSS (Cross Site Scripting) vulnerabilities in Argyle Social

Vulnerability ID: HTB22979 Reference: http://www.htbridge.ch/advisory/multiplexsscrosssitescriptingvulnerabilitiesinargylesocial.html Product: Argyle Social Vendor: Argyle Social http://argylesocial.com/ Vulnerable Version: Current at 26/04/2011 Vendor Notification: 28 April 2011 Vulnerability...

Argyle Social Cross Site Request Forgery

============================== Vulnerability ID: HTB22979 Reference: http://www.htbridge.ch/advisory/multiplexsscrosssitescriptingvulnerabilitiesinargylesocial.html Product: Argyle Social Vendor: Argyle Social http://argylesocial.com/ Vulnerable Version: Current at 26/04/2011 Vendor Notification:...

Argyle Social - Multiple Cross-Site Scripting Vulnerabilities

Argyle Social - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/47826/info Argyle Social is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

Argyle Social - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/47826/info Argyle Social is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

Cross-site Request Forgery (CSRF) Vulnerabilities in Argyle Social

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Argyle Social which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF vulnerabilities in Argyle Social 1.1 The vulnerability exists due to insufficient validation...