2 matches found
CVE-2011-3381
Cross-site request forgery CSRF vulnerability in Phorum before 5.2.16 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2011-3381
Phorum is vulnerable to CSRF in all versions before 5.2.16, enabling an attacker to hijack the session of a logged-in user (vector not disclosed in the initial entry). Connected sources specify additional risk of XSS and CSRF as part of multiple vulnerabilities, with impact including arbitrary fi...