3 matches found
CVE-2017-12970
Cross-site request forgery CSRF vulnerability in Apache2Triad 1.5.4 allows remote attackers to hijack the authentication of authenticated users for requests that 1 add or 2 delete user accounts via a request to phpsftpd/users.php...
CVE-2017-12970
Apache2Triad 1.5.4 is affected by CVE-2017-12970 (CSRF). Multiple sources describe a CSRF weakness in phpsftpd/users.php that can allow an attacker to hijack the authenticated user’s session to add or delete user accounts. The Alpha-vendor product is Apache2Triad; no explicit remediation/patch ve...
Apache2Triad 1.5.4 - Multiple Vulnerabilities
Exploit for php platform in category web applications + Credits: John Page AKA hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/APACHE2TRIAD-SERVER-STACK-v1.5.4-MULTIPLE-CVE.txt + ISR: ApparitionSec Vendor: =============== apache2triad.net...