Apache Tomcat CVE-2012-4431 Cross-Site Request Forgery Vulnerability

Apache Tomcat is prone to a cross-site request forgery vulnerability.

Exploiting this issue may allow a remote attacker to perform certain actions in the context of an authorized user and gain access to the affected application; other attacks are also possible.

The following versions are vulnerable:

Tomcat 7.0.0 through 7.0.31
Tomcat 6.0.0 through 6.0.35


 

Privacy Statement
Copyright 2010, SecurityFocus