3 matches found
CVE-2011-1954
Post Revolution 0.8.0c and earlier is affected by CSRF in multiple endpoints (ajax-weblog-guardar.php, verpost.php, comments.php, perfil.php), enabling remote attackers to hijack user sessions. The vulnerability is described consistently across CVE-2011-1954 entries; the root cause is inadequate ...
Post Revolution 0.8.0c Multiple Remote Vulnerabilities
info ——————————— Name : Post Revolution 0.8.0c Multiple Remote Vulnerabilities Class: Design Error && Input Validation Error CVE: CVE-2011-1952, CVE-2011-1953, CVE-2011-1954 Remote: Yes Local: No Credit : Javier Bassi javierbassi at gmail dot com Vulnerable : All versions prior to and including...
Post Revolution 0.8.0c XSS / XSRF / Denial Of Service
info Name : Post Revolution 0.8.0c Multiple Remote Vulnerabilities Class: Design Error && Input Validation Error CVE: CVE-2011-1952, CVE-2011-1953, CVE-2011-1954 Remote: Yes Local: No Credit : Javier Bassi Vulnerable : All versions prior to and including 0.8.0c are affected. Vendor...