jetlib.sec » Bugtraq » CSRF (Cross-Site Request Forgery) in DClassifieds

Feeds

132963 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

Bugtraq

• January 25, 2012
• 

  CSRF (Cross-Site Request Forgery) in DClassifieds

  Posted: January 25th, 2012, 8:56am PST

  Tags:   

  Posted by advisory on Jan 25

  Advisory ID: HTB23067
  Reference: https://www.htbridge.ch/advisory/csrf_cross_site_request_forgery_in_dclassifieds.html
  Product: DClassifieds
  Vendor: www.dclassifieds.eu ( http://www.dclassifieds.eu/ )
  Vulnerable Version: 0.1 final and probably prior
  Tested Version: 0.1 final
  Vendor Notification: 04 January 2012
  Vulnerability Type: CSRF (Cross-Site Request Forgery)
  Risk Level: Low
  Credit: High-Tech Bridge SA Security Research Lab (...