← voltar
CVE-2008-6587

CVE-2008-6587

EPSS 0.6%
Cross-site request forgery (CSRF) vulnerability in index.tmpl in Vuze (formerly Azureus HTML WebUI), probably 0.7.6, allows remote attackers to hijack the authentication of users for requests that force the download of arbitrary torrent files via the upurl parameter.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://exchange.xforce.ibmcloud.com/vulnerabilities/41926http://www.securityfocus.com/archive/1/491066/100/0/threadedhttp://www.securityfocus.com/bid/28848