Cross-site request forgery (CSRF) vulnerability in GROWI v3.4.6 and earlier allows remote attackers to hijack the authentication of administrators via updating user's 'Basic Info'.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2019-07-05T13:20:17
Updated: 2024-08-04T20:09:23.982Z
Reserved: 2019-01-10T00:00:00
Link: CVE-2019-5968
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-07-05T14:15:12.217
Modified: 2019-07-09T14:52:47.593
Link: CVE-2019-5968
Redhat
No data.