CVE-2009-3248

NONECVSS 0.0

0.0

Cross-site request forgery (CSRF) vulnerability in the RSS module in vtiger CRM 5.0.4 allows remote attackers to hijack the authentication of Admin users for requests that modify the news feed system via the rssurl parameter in a Save action to index.php.

🔗 References (16)

cve@mitrehttp://marc.info/?l=bugtraq&m=125060676515670&w=2
cve@mitrehttp://secunia.com/advisories/36309
cve@mitrehttp://www.exploit-db.com/exploits/9450
cve@mitrehttp://www.osvdb.org/57238
cve@mitrehttp://www.securityfocus.com/bid/36062
cve@mitrehttp://www.ush.it/2009/08/18/vtiger-crm-504-multiple-vulnerabilities/
cve@mitrehttp://www.ush.it/team/ush/hack-vtigercrm_504/vtigercrm_504.txt
cve@mitrehttp://www.vupen.com/english/advisories/2009/2319
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=125060676515670&w=2
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/36309
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/9450
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/57238
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/36062
af854a3a-2127-422b-91ae-364da2661108http://www.ush.it/2009/08/18/vtiger-crm-504-multiple-vulnerabilities/
af854a3a-2127-422b-91ae-364da2661108http://www.ush.it/team/ush/hack-vtigercrm_504/vtigercrm_504.txt

Is Your Infrastructure Affected by CVE-2009-3248?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-3248

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-3248?