2 matches found
CVE-2015-5595
Cross-site request forgery CSRF vulnerability in admin.php in Zenphoto before 1.4.9 allows remote attackers to hijack the authentication of admin users for requests that may cause a denial of service resource consumption...
CVE-2015-5595
Zenphoto is affected by a CSRF in admin.php prior to version 1.4.9 that could allow an attacker to hijack an admin’s session and trigger requests leading to resource consumption (denial of service). Public sources confirm the vulnerability exists in Zenphoto