Описание
Cross-site request forgery (CSRF) vulnerability in OpenText ECM (formerly Livelink ECM) 9.7.1 allows remote attackers to hijack the authentication of administrators for requests that change folder and resource permissions.
Cross-site request forgery (CSRF) vulnerability in OpenText ECM (formerly Livelink ECM) 9.7.1 allows remote attackers to hijack the authentication of administrators for requests that change folder and resource permissions.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-5283
- https://exchange.xforce.ibmcloud.com/vulnerabilities/62057
- http://archives.neohapsis.com/archives/fulldisclosure/2010-09/0359.html
- http://packetstormsecurity.org/1009-exploits/opentext-xsrfxss.txt
- http://secunia.com/advisories/41553
- http://www.osvdb.org/68255
Связанные уязвимости
nvd
около 13 лет назад
Cross-site request forgery (CSRF) vulnerability in OpenText ECM (formerly Livelink ECM) 9.7.1 allows remote attackers to hijack the authentication of administrators for requests that change folder and resource permissions.