3 matches found
CVE-2013-3583
Cross-site request forgery CSRF vulnerability in saveProperties.html in Corporater EPM Suite allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords...
CVE-2013-3583
The CVE-2013-3583 issue affects Corporater EPM Suite, specifically the saveProperties.html endpoint. It is a Cross-site Request Forgery (CSRF) vulnerability that enables an attacker to hijack an authenticated user’s session to perform password-change requests. The NVD entry lists a CVSS v2 base s...
Corporater EPM Suite is vulnerable to cross-site request forgery and cross-site scripting
Overview Corporater EPM Suite contains cross-site request forgery CSRF CWE-352 and reflected cross-site scripting XSS CWE-79 vulnerabilities. Description CWE-352: Cross-Site Request Forgery CSRF- CVE-2013-3583Corporater EPM Suite contains a cross-site request forgery vulnerability on the...