Vulnerabilities

CVE-2010-3891

by Fred · 12/11/2010

Cross-site request forgery (CSRF) vulnerability in ESAdmin/security.do in the administrator interface in IBM OmniFind Enterprise Edition before 9.1 allows remote attackers to hijack the authentication of administrators for requests that add an administrative user via a saveNewUser action.

Date published : 2010-11-12

http://www.securityfocus.com/bid/44740

http://www.securityfocus.com/archive/1/514688/100/0/threaded

Similar

Tags: Cybersecurity Alert