e-Pares Unspecified Cross Site Request Forgery Vulnerability

e-Pares is prone to a cross-site request-forgery vulnerability.

Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application. Other attacks are also possible.

e-Pares 01, L01, L03, L10, L20, L30, and L40 are vulnerable; other versions may be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus