Cross-site request forgery (CSRF) vulnerability in the web management interface in httpd/cgi-bin/shutdown.cgi in Smoothwall Express 3.1 and 3.0 SP3 and previous versions allows remote malicious users to hijack the authentication of administrators for requests that perform a reboot via a request to cgi-bin/shutdown.cgi.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
smoothwall smoothwall |
||
smoothwall smoothwall 3.0 |