2 matches found
CVE-2010-0711
Cross-site request forgery CSRF vulnerability in default.asp in ASPCode CMS 1.5.8, 2.0.0 Build 103, and possibly other versions, allows remote attackers to hijack the authentication of an administrator for requests that 1 delete users via the delete action in the ma2 parameter or 2 create...
CVE-2010-0711
The CVE-2010-0711 entry affects ASPCode CMS versions 1.5.8 and 2.0.0 Build 103 (and possibly others). The issue is a Cross-site Request Forgery (CSRF) in default.asp that enables remote attackers to hijack an administrator’s session for actions triggered via the ma2 parameter, specifically (1) de...