Security Advisory

CVE-2010-5087

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-26 18:00:00

Last updated 2024-09-16 19:35:01

Assigner redhat

State PUBLISHED

Description

SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 allows remote attackers to bypass the cross-site request forgery (CSRF) protection mechanism and hijack the authentication of administrators via vectors related to "form action requests" using a controller.

← Browse all CVEs View on cve.org ↗