|
|
CVE Reference: CVE-2007-5572 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-5572 |
|
|
Description: Multiple cross-site request forgery (CSRF) vulnerabilities in Simple PHP Blog (SPHPBlog) 0.4.9 allow remote attackers to perform delete actions as administrators via (1) the block_id parameter to add_block.php or (2) the link_id parameter to add_link.php. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/37238 http://xforce.iss.net/xforce/xfdb/37239 SAID Secunia Advisory: SA27264 MISC http://hackish.altervista.org/forum/viewtopic.php?t=221 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/482422/100/0/threaded |
|
| Return to the previous page. |
