CVE

Id
52980  
CVE No.
CVE-2011-5068  
Status
Candidate  
Description
Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) 3.65 allow remote attackers to hijack the authentication of user for requests that delete a user via user_delete.php and other unspecified programs.  
Phase
Assigned (20120128)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
561396 52980 CVE-2011-5068 CERT-VN:VU#576355  View
561397 52980 CVE-2011-5068 URL:http://www.kb.cert.org/vuls/id/576355  View
561398 52980 CVE-2011-5068 BID:50896  View
561399 52980 CVE-2011-5068 URL:http://www.securityfocus.com/bid/50896  View
561400 52980 CVE-2011-5068 OSVDB:77657  View
561401 52980 CVE-2011-5068 URL:http://osvdb.org/show/osvdb/77657  View
561402 52980 CVE-2011-5068 SECUNIA:45437  View
561403 52980 CVE-2011-5068 URL:http://secunia.com/advisories/45437  View
561404 52980 CVE-2011-5068 XF:sit-multiple-csrf(71653)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
25549 JVNDB-2012-001256 Support Incident Tracker におけるクロスサイトスクリプティングの脆弱性 Support Incident Tracker には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2011-5073 52980 5.8 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001256.html  View