Description

Cross-site request forgery (CSRF) vulnerability in Jolokia before 1.2.1 allows remote attackers to hijack the authentication of users for requests that execute MBeans methods via a crafted web page.

Remediation

References

CVE-2014-0168

Related Vulnerabilities

Jenkins Resource Management Errors Vulnerability (CVE-2014-3661)

WordPress Plugin FPW Category Thumbnails Multiple Unspecified Vulnerabilities (1.6.7)

WordPress Plugin WP-FeedStats de HTML Injection (2.3)

PHP Other Vulnerability (CVE-2007-1889)

OpenSSL Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-4044)

Severity

Medium

Classification

CVE-2014-0168 CWE-352

Tags

Missing Update Known Vulnerabilities