Description
Cross-site request forgery (CSRF) vulnerability in logout.action in Atlassian Confluence 3.4.6 allows remote attackers to hijack the authentication of administrators for requests that logout the user via a comment.
Remediation
References
Related Vulnerabilities
phpMyFAQ Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6048)
Jboss EAP CVE-2012-4529 Vulnerability (CVE-2012-4529)
Ruby Cryptographic Issues Vulnerability (CVE-2011-2686)
WordPress Plugin Form Lightbox Security Bypass (2.1)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1158)