The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.
Common Name None VWE-ID VWE-2008-0006-1 Related Report None Severity MEDIUM Exploit Difficulty NORMAL Platform Affects all platforms supported by the vulnerable versions. Description Cross Site Request Forgery. Wiki history comparison form is not protected by a secure token.
Discovered June 9, 2008 Resolved June 15, 2008 Patches Available 2.0.0 Beta 3
This page has been seen 7,152 times.
-
-
Created by on
-