5 matches found
Endeca Latitude 2.2.2 - CSRF Vulnerability
Exploit for multiple platform in category web applications Product: Endeca Latitude Affected Versions: 2.2.2, potentially others Fixed Versions: N/A Vulnerability Type: Cross-Site Request Forgery Security Risk: low Vendor URL: N/A Vendor Status: decided not to fix Advisory URL:...
Endeca Latitude 2.2.2 - Cross-Site Request Forgery
Endeca Latitude 2.2.2 - Cross-Site Request Forgery Advisory: Endeca Latitude Cross-Site Request Forgery RedTeam Pentesting discovered a Cross-Site Request Forgery CSRF vulnerability in Endeca Latitude. Using this vulnerability, an attacker might be able to change several different settings of the...
Endeca Latitude 2.2.2 - Cross-Site Request Forgery
Advisory: Endeca Latitude Cross-Site Request Forgery RedTeam Pentesting discovered a Cross-Site Request Forgery CSRF vulnerability in Endeca Latitude. Using this vulnerability, an attacker might be able to change several different settings of the Endeca Latitude instance or disable it entirely...
Endeca Latitude 2.2.2 Cross Site Request Forgery
Advisory: Endeca Latitude Cross-Site Request Forgery RedTeam Pentesting discovered a Cross-Site Request Forgery CSRF vulnerability in Endeca Latitude. Using this vulnerability, an attacker might be able to change several different settings of the Endeca Latitude instance or disable it entirely...
CVE-2014-2399
CVE-2014-2399 concerns Endeca Latitude (Endeca Latitude 2.2.2) Cross‑Site Request Forgery. The CSRF stems from vulnerable admin/config URLs without anti‑CSRF controls, enabling an attacker to trigger administrative actions (e.g., change settings or disable the instance) via forged requests. No fi...