2 matches found
CVE-2018-1000206
JFrog Artifactory version since 5.11 contains a Cross ite Request Forgery CSRF vulnerability in UI rest endpoints that can result in Classic CSRF attack allowing an attacker to perform actions as logged in user. This attack appear to be exploitable via The victim must run maliciously crafted flas...
CVE-2018-1000206
JFrog Artifactory v5.11+ contains a UI REST CSRF vulnerability enabling actions as a logged-in user. The attack is described as a Classic CSRF likely exploitable via a crafted Flash component. Affected component: UI REST endpoints; root cause: Cross-Site Request Forgery. Impact: unauthorized acti...