5 matches found
EUVD-2009-1337
Malware in sbrugna...
CVE-2009-1434
Cross-site request forgery CSRF vulnerability in Foswiki before 1.0.5 allows remote attackers to hijack the authentication of arbitrary users for requests that modify pages, change permissions, or change group memberships, as demonstrated by a URL for a 1 save or 2 view script in the SRC attribut...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in TWiki before 4.3.1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that update pages, as demonstrated by a URL for a save script in the SRC attribute of an IMG element, a related issue to CVE-2009-1434...
CVE-2009-1339
Cross-site request forgery CSRF vulnerability in TWiki before 4.3.1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that update pages, as demonstrated by a URL for a save script in the SRC attribute of an IMG element, a related issue to CVE-2009-1434...
CVE-2009-1434
Foswiki CSRF (CVE-2009-1434): Affected: Foswiki 1.0.x prior to 1.0.5. Vulnerable vector involves CSRF via URLs in IMG SRC attributes that trigger save/view scripts, enabling an attacker to hijack user sessions to modify pages, change permissions, or alter group memberships. Root cause: insufficie...