Description

Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that modify user information via unspecified vectors, a different vulnerability than CVE-2009-4077.

Remediation

References

CVE-2009-4076

Related Vulnerabilities

MediaWiki Other Vulnerability (CVE-2013-4567)

Oracle Database Server CVE-2012-0520 Vulnerability (CVE-2012-0520)

Oracle JRE CVE-2018-2663 Vulnerability (CVE-2018-2663)

WordPress Plugin WordPress Infinite Scroll-Ajax Load More Local File Inclusion (2.11.1)

Internet Information Services Other Vulnerability (CVE-2000-0884)

Severity

Medium

Classification

CVE-2009-4076 CWE-352

Tags

Missing Update Known Vulnerabilities