2 matches found
CVE-2006-2495
Cross-site request forgery CSRF vulnerability in the Entry Manager in Serendipity before 1.0-beta3 allows remote attackers to perform unauthorized actions as a logged-in user via a link or IMG tag...
CVE-2006-2495
CVE-2006-2495 describes a CSRF vulnerability in the Serendipity project’s Entry Manager prior to version 1.0-beta3 . The issue allows remote attackers to perform unauthorized actions on behalf of a logged-in user by enticing them to click a link or view an image tag. The underlying risk is cross-...