PT-2007-2607 · Webapp · Webapp
Published
2007-02-28
·
Updated
2011-03-08
·
CVE-2007-1180
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
WebAPP versions prior to 0.9.9.5
Description
The issue is related to the lack of referrer checks in certain forms, which could facilitate remote cross-site request forgery (CSRF) attacks. The exact impact of this issue is not fully understood and might have other unknown consequences.
Recommendations
For versions prior to 0.9.9.5, update to version 0.9.9.5 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Webapp