Users of Wolf CMS please be advised of a XSRF (Cross-Site Request Forgery) vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)
Amplify’d from www.criticalwatch.com
The vulnerability exists due to failure in the "wolf/app/controllers/UserController.php" script to properly verify the
source of HTTP request.
Successful exploitation of this vulnerability could result in a compromise of the application, theft of cookie-based
authentication credentials, disclosure or modification of sensitive data.
See this Amp at http://bit.ly/hJgAPQ
No comments:
Post a Comment