Multiple cross-site request forgery (CSRF) vulnerabilities in Post Revolution 0.8.0c-2 and previous versions allow remote malicious users to hijack the authentication of arbitrary users for requests to (1) ajax-weblog-guardar.php, (2) verpost.php, (3) comments.php, or (4) perfil.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
postrev post revolution 0.6.2 |
||
postrev post revolution 0.6.4 |
||
postrev post revolution 0.7.0 |
||
postrev post revolution 0.6.3 |
||
postrev post revolution 0.8.0c |
||
postrev post revolution |
||
postrev post revolution 0.6.6 |
||
postrev post revolution 0.6.5 |
||
postrev post revolution 0.8.0b |
||
postrev post revolution 0.8.0 |