Multiple cross-site request forgery (CSRF) vulnerabilities in ProjectForge before 5.3 allow remote attackers to hijack the authentication of arbitrary users via vectors related to (1) web/admin/, (2) web/core/, (3) web/dialog/, (4) web/fibu/, (5) web/mobile/, (6) web/task/, or (7) web/wicket/.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-01-02T11:00:00
Updated: 2024-08-06T18:01:20.149Z
Reserved: 2014-01-01T00:00:00
Link: CVE-2013-7251
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-01-02T14:59:04.267
Modified: 2024-11-21T02:00:34.203
Link: CVE-2013-7251
Redhat
No data.