Security Advisory

CVE-2013-7352

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-04-02 18:00:00

Last updated 2024-09-16 23:06:21

Assigner mitre

State PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in blogs/admin.php in b2evolution before 4.1.7 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the show_statuses[] parameter, related to CVE-2013-2945.

← Browse all CVEs View on cve.org ↗