4 matches found
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in index.tmpl in Vuze formerly Azureus HTML WebUI, probably 0.7.6, allows remote attackers to hijack the authentication of users for requests that force the download of arbitrary torrent files via the upurl parameter...
CVE-2008-6587
Cross-site request forgery CSRF vulnerability in index.tmpl in Vuze formerly Azureus HTML WebUI, probably 0.7.6, allows remote attackers to hijack the authentication of users for requests that force the download of arbitrary torrent files via the upurl parameter...
CVE-2008-6587
Cross-site request forgery CSRF vulnerability in index.tmpl in Vuze formerly Azureus HTML WebUI, probably 0.7.6, allows remote attackers to hijack the authentication of users for requests that force the download of arbitrary torrent files via the upurl parameter...
Azureus HTML WebUI 0.7.6 - Cross-Site Request Forgery
source: https://www.securityfocus.com/bid/28848/info Azureus HTML WebUI is prone to a cross-site request-forgery vulnerability. Successful exploits aid in transferring malicious content to unsuspecting users' computers, aiding in further attacks. Other actions may also be affected, but this has n...