Cross-site request forgery (CSRF) vulnerability in Novell iManager 2.7 before SP6 Patch 1 allows remote malicious users to hijack the authentication of arbitrary users by leveraging improper request validation by iManager code deployed within an Apache Tomcat container.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell imanager 2.7 |
||
novell imanager 2.7.3 |
||
novell imanager 2.7.4 |
||
novell imanager 2.7.5 |
||
novell imanager |
||
novell imanager 2.7.1 |
||
novell imanager 2.7.2 |