Multiple cross-site request forgery (CSRF) vulnerabilities in Fat Free CRM prior to 0.12.1 allow remote malicious users to hijack the authentication of unspecified victims via unknown vectors, related to the lack of a protect_from_forgery line in app/controllers/application_controller.rb.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fatfreecrm fat free crm 0.11.2 |
||
fatfreecrm fat free crm 0.11.0 |
||
fatfreecrm fat free crm 0.9.10 |
||
fatfreecrm fat free crm 0.9.9 |
||
fatfreecrm fat free crm 0.9.8 |
||
fatfreecrm fat free crm 0.9.7 |
||
fatfreecrm fat free crm |
||
fatfreecrm fat free crm 0.11.1 |
||
fatfreecrm fat free crm 0.10.1 |
||
fatfreecrm fat free crm 0.9.6 |