Описание
Cross-Site Request Forgery (CSRF) vulnerability in tDiary 2.1.1, and tDiary 2.0.1 and earlier, allows remote attackers to conduct actions as another user, and execute commands on the server, via a URL that is activated by the user.
Cross-Site Request Forgery (CSRF) vulnerability in tDiary 2.1.1, and tDiary 2.0.1 and earlier, allows remote attackers to conduct actions as another user, and execute commands on the server, via a URL that is activated by the user.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-2411
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21735
- http://secunia.com/advisories/16329
- http://secunia.com/advisories/16787
- http://sourceforge.net/forum/forum.php?forum_id=482743
- http://www.debian.org/security/2005/dsa-808
- http://www.osvdb.org/18604
- http://www.securityfocus.com/bid/14500
EPSS
CVE ID
Связанные уязвимости
Cross-Site Request Forgery (CSRF) vulnerability in tDiary 2.1.1, and tDiary 2.0.1 and earlier, allows remote attackers to conduct actions as another user, and execute commands on the server, via a URL that is activated by the user.
Cross-Site Request Forgery (CSRF) vulnerability in tDiary 2.1.1, and t ...
EPSS