The vulnerability of the process.c file in the user authentication system xauth, related to insufficient input validation, allows a perpetrator to compromise data integrity and cause service failures.

The vulnerability in the process.c file of the xauth user authentication software is related to insufficient validation of input data when using strncpy in the doadd function. Exploiting this vulnerability allows an attacker to compromise data integrity and cause service failures...

CVE-2019-16659

TuziCMS 2.0.6 has index.php/manage/link/doadd CSRF...

Cross site request forgery (csrf)

TuziCMS 2.0.6 has index.php/manage/link/doadd CSRF...

Cross site request forgery (csrf)

TuziCMS 2.0.6 has index.php/manage/notice/doadd CSRF...

CVE-2019-16658

TuziCMS 2.0.6 is affected by a CSRF vulnerability in the endpoint index.php/manage/notice/do_add . The provided documents identify the root cause as a CSRF issue at that endpoint. No exploitation specifics or remediation steps are given in the sources. If present, check for interim mitigations; o...

CVE-2019-16659

The connected sources confirm CVE-2019-16659 affects TuziCMS 2.0.6, describing a CSRF issue in index.php/manage/link/do_add. The root cause is a Cross-Site Request Forgery vulnerability in that endpoint, enabling unauthorized state-changing requests from a logged-in user. Exploit details, affecte...