Описание
Multiple cross-site request forgery (CSRF) vulnerabilities in phpList before 2.10.13 allow remote attackers to hijack the authentication of administrators for requests that (1) add or (2) edit administrator accounts.
Multiple cross-site request forgery (CSRF) vulnerabilities in phpList before 2.10.13 allow remote attackers to hijack the authentication of administrators for requests that (1) add or (2) edit administrator accounts.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2011-0748
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72746
- http://int21.de/cve/CVE-2011-0748-phplist.html
- http://osvdb.org/78549
- http://secunia.com/advisories/44041
- http://securityreason.com/securityalert/8199
- http://www.exploit-db.com/exploits/18419
- http://www.phplist.com/?lid=516
- http://www.securityfocus.com/archive/1/517400/100/0/threaded
- http://www.securityfocus.com/bid/51681
Связанные уязвимости
nvd
почти 15 лет назад
Multiple cross-site request forgery (CSRF) vulnerabilities in phpList before 2.10.13 allow remote attackers to hijack the authentication of administrators for requests that (1) add or (2) edit administrator accounts.
debian
почти 15 лет назад
Multiple cross-site request forgery (CSRF) vulnerabilities in phpList ...