Cross-site request forgery (CSRF) vulnerability in the subscription page editor (spageedit) in phpList prior to 3.0.6 allows remote malicious users to hijack the authentication of administrators via a request to admin/.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phplist phplist |
||
phplist phplist 3.0.4 |
||
phplist phplist 3.0.3 |
||
phplist phplist 3.0.2 |
||
phplist phplist 3.0.1 |
||
phplist phplist 3.0.0 |