Cross-site request forgery (CSRF) vulnerability in Cybozu Office prior to 8.1.6 and 9.x prior to 9.3.0 allows remote malicious users to hijack the authentication of arbitrary users for requests that change mobile passwords, a different vulnerability than CVE-2013-2305.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cybozu cybozu office 9 |
||
cybozu cybozu office 9.2.1 |
||
cybozu cybozu office |
||
cybozu cybozu office 7 |
||
cybozu cybozu office 6 |