4 matches found
CVE-2013-7346
Cross-site request forgery CSRF vulnerability in Symphony CMS before 2.3.2 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the sort parameter to system/authors/, related to CVE-2013-2559...
CVE-2013-7346
Cross-site request forgery CSRF vulnerability in Symphony CMS before 2.3.2 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the sort parameter to system/authors/, related to CVE-2013-2559...
CVE-2013-7346
Symphony CMS vulnerable before 2.3.2 to a Cross-Site Request Forgery (CSRF) that can hijack administrator authentication to perform SQL injection via the sort parameter in system/authors/. The issue is described as allowing remote (potentially unauthenticated via CSRF) execution of arbitrary SQL ...
CVE-2013-7346
creationtimestamp| type| source ---|---|--- 2014-03-24 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39136...