CVE-2009-1434

NONECVSS 0.0

0.0

Cross-site request forgery (CSRF) vulnerability in Foswiki before 1.0.5 allows remote attackers to hijack the authentication of arbitrary users for requests that modify pages, change permissions, or change group memberships, as demonstrated by a URL for a (1) save or (2) view script in the SRC attribute of an IMG element, a related issue to CVE-2009-1339.

🔗 References (12)

cve@mitrehttp://foswiki.org/Support/SecurityAlert-CVE-2009-1434
cve@mitrehttp://osvdb.org/54148
cve@mitrehttp://secunia.com/advisories/34863
cve@mitrehttp://sourceforge.net/mailarchive/forum.php?thread_name=49F61C4E.2040806%40lavrsen.dk&forum_name=foswiki-announce
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/50256
cve@mitrehttps://launchpad.net/bugs/cve/2009-1434
af854a3a-2127-422b-91ae-364da2661108http://foswiki.org/Support/SecurityAlert-CVE-2009-1434
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/54148
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/34863
af854a3a-2127-422b-91ae-364da2661108http://sourceforge.net/mailarchive/forum.php?thread_name=49F61C4E.2040806%40lavrsen.dk&forum_name=foswiki-announce
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/50256
af854a3a-2127-422b-91ae-364da2661108https://launchpad.net/bugs/cve/2009-1434

Is Your Infrastructure Affected by CVE-2009-1434?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1434

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1434?