Multiple cross-site request forgery (CSRF) vulnerabilities in BugTracker.NET prior to 2.7.2 allow remote malicious users to delete arbitrary bugs and perform other administrative tasks via unspecified vectors, possibly related to delete_*.aspx pages, and massedit.aspx, subscribe.aspx, flag.aspx, and relationships.aspx.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bugtracker.net bugtracker.net |