Description
Cross-site request forgery (CSRF) vulnerability in logout.action in Atlassian Confluence 3.4.6 allows remote attackers to hijack the authentication of administrators for requests that logout the user via a comment.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Job Manager Cross-Site Scripting (1.26.1)
WordPress Plugin Custom Field Template PHP Object Injection (2.5.7)
Oracle JRE CVE-2013-2383 Vulnerability (CVE-2013-2383)
Oracle JRE CVE-2012-5069 Vulnerability (CVE-2012-5069)
WordPress Plugin WordPoints Multiple Vulnerabilities (1.10.2)