3 matches found
CVE-2011-1026
Apache Archiva is affected by CSRF vulnerabilities (CVE-2011-1026) in Archiva 1.0–1.2.2 and 1.3.x before 1.3.5. The issues allow remote attackers to hijack administrator sessions, potentially compromising the entire application. Affected component: Archiva web admin/session handling; vulnerabilit...
Apache Archiva 1.3.4 Cross Site Request Forgery
Hi, This is regarding multiple CSRF Cross Site Request Forgery Vulnerabilities in Apache Archiva 1.3.4 and previous versions. The following is the disclosure document Title: Multiple CSRF Vulnerabilities in Apache Archiva 1.3.4 --------------------------------------------------------------------...
Apache Archiva 1.3.4 Cross Site Request Forgery
CVE-2011-1026: Apache Archiva Multiple CSRF vulnerability Severity: High Vendor: The Apache Software Foundation Versions Affected: Archiva 1.3.0 - 1.3.4 The unsupported versions Archiva 1.0 - 1.2.2 are also affected. Description: An attacker can build a simple html page containing a hidden Image...