CVE-2006-4582
N/A
N/A
Summary
Cross-site request forgery (CSRF) vulnerability in The Address Book 1.04e allows remote attackers to perform unauthorized actions as other users via unspecified vectors, as demonstrated by deleting arbitrary users via the id parameter in a deleteuser action in users.php.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://secunia.com/secunia_research/2006-76/advisory/
- http://osvdb.org/32559
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31251
- http://secunia.com/advisories/21694
References
- http://secunia.com/secunia_research/2006-76/advisory/
- http://osvdb.org/32559
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31251
- http://secunia.com/advisories/21694
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.