CVE-2009-4079

Publication date

2009-11-25 21:22:00

Family

mitre

State

PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in Redmine 0.8.5 and earlier allows remote attackers to hijack the authentication of users for requests that delete a ticket via unspecified vectors.