Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the sign-out page in Vanilla 1.1.4 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout via a SignOutNow action to people.php...

CVE-2008-3759

Cross-site request forgery CSRF vulnerability in ajax/UpdateCheck.php in Vanilla 1.1.4 and earlier has unknown impact and remote attack vectors...

CVE-2008-3760

Cross-site request forgery CSRF vulnerability in the sign-out page in Vanilla 1.1.4 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout via a SignOutNow action to people.php...

CVE-2008-3760

The CVE-2008-3760 entry documents a CSRF flaw in Vanilla CMS prior to and including version 1.1.4, located on the sign-out page. The vulnerability lets remote attackers hijack a user’s authenticated session by triggering a logout via a SignOutNow request to people.php, with no user interaction re...

CVE-2008-3760

Cross-site request forgery CSRF vulnerability in the sign-out page in Vanilla 1.1.4 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout via a SignOutNow action to people.php...

CVE-2008-3759

CVE-2008-3759 is a Cross-site Request Forgery (CSRF) vulnerability in Vanilla up to version 1.1.4, affecting ajax/UpdateCheck.php. The impact is described as unknown in the initial descriptions, with a CVSSv2 base score of 7.5 (NETWORK attack, LOW attack complexity, no authentication, partial con...