Description
Cross-site request forgery (CSRF) vulnerability in the JMX Console in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 allows remote attackers to hijack the authentication of administrators for requests that deploy WAR files.
Remediation
References
Related Vulnerabilities
Jenkins Improper Input Validation Vulnerability (CVE-2018-1000068)
Joomla Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-10238)
Drupal Other Vulnerability (CVE-2006-0070)
OpenSSL Out-of-bounds Read Vulnerability (CVE-2023-1255)
OpenVPN AS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9104)