CVE-2007-1489

Unspecified vulnerability in web-app.org Web Automated Perl Portal (WebAPP) 0.9.9.4 to 0.9.9.6 allows remote attackers to obtain admin access by modifying cookies and performing "certain consecutive actions," possibly due to a cross-site request forgery (CSRF) vulnerability.

🔗 References (12)

• cve@mitrehttp://osvdb.org/33273
• cve@mitrehttp://secunia.com/advisories/24540
• cve@mitrehttp://www.attrition.org/pipermail/vim/2007-March/001446.html
• cve@mitrehttp://www.web-app.org/cgi-bin/index.cgi?action=downloadinfo&cat=crip&id=2
• cve@mitrehttp://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=256
• cve@mitrehttp://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=259
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/33273
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/24540
• af854a3a-2127-422b-91ae-364da2661108http://www.attrition.org/pipermail/vim/2007-March/001446.html
• af854a3a-2127-422b-91ae-364da2661108http://www.web-app.org/cgi-bin/index.cgi?action=downloadinfo&cat=crip&id=2
• af854a3a-2127-422b-91ae-364da2661108http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=256
• af854a3a-2127-422b-91ae-364da2661108http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=259