2 matches found
OpenCA allows Cross site request forgery (XSRF)
Overview OpenCA contains a cross site request forgery XSRF vulnerability that may allow an attacker to leverage an administrator's creditials to exectue activities on the Certification Authority. Description The OpenCA PKI Development Project\t is an open source out-of-the-box Certification...
CVE-2008-0556
CVE-2008-0556 describes a cross-site request forgery (CSRF) vulnerability in the OpenCA PKI project, affecting version 0.9.2.5 and possibly earlier. The vulnerability allows an attacker to coerce an authenticated administrator to perform unauthorized actions on the Certification Authority by luri...