Security Advisory

CVE-2010-3026

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-08-16 19:00:00

Last updated 2024-08-07 02:55:46

Assigner mitre

State PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in application/modules/admin/controllers/users.php in Tomaz Muraus Open Blog 1.2.1, and possibly earlier, allows remote attackers to hijack the authentication of administrators for requests to admin/users/edit that grant administrative privileges.

← Browse all CVEs View on cve.org ↗