EUVD-2011-3947

Malware in sbrugna...

CVE-2011-3993

SKYARC MTCMS before 5.252, and the MultiFileUploader 0.44 and earlier, DuplicateEntry 1.2 and earlier, MailPack 1.741 and earlier, and AutoTagging 0.08 and earlier plugins for Movable Type, uses weak permissions, which allows remote authenticated users to modify files and settings via unspecified...

CVE-2011-3994

Cross-site request forgery CSRF vulnerability in SKYARC MTCMS before 5.252, and the MultiFileUploader 0.44 and earlier, DuplicateEntry 1.2 and earlier, MailPack 1.741 and earlier, and AutoTagging 0.08 and earlier plugins for Movable Type, allows remote attackers to hijack the authentication of...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in SKYARC MTCMS before 5.252, and the MultiFileUploader 0.44 and earlier, DuplicateEntry 1.2 and earlier, MailPack 1.741 and earlier, and AutoTagging 0.08 and earlier plugins for Movable Type, allows remote attackers to hijack the authentication of...

CVE-2011-3994

CVE-2011-3994 describes a CSRF vulnerability in SKYARC MTCMS prior to 5.252 and multiple Movable Type plugins (MultiFileUploader 0.44 and earlier; DuplicateEntry 1.2 and earlier; MailPack 1.741 and earlier; AutoTagging 0.08 and earlier). The underlying issue allows remote attackers to hijack the ...

JVN#56667137: Multiple SKYARC System Co., Ltd. products vulnerable to cross-site request forgery

MTCMS and multiple Movable Type plugins provided by SKYARC System Co., Ltd. contain a cross-site request forgery vulnerability. Impact If a user views a malicious page while logged into MTCMS or a Movable Type implementation with any of the plugins from "Products Affected" running, information...