Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that send arbitrary emails via unspecified vectors, a different vulnerability than CVE-2009-4076.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2009-11-25 22:00
Updated : 2024-02-28 11:21
NVD link : CVE-2009-4077
Mitre link : CVE-2009-4077
CVE.ORG link : CVE-2009-4077
JSON object : View
Products Affected
roundcube
- webmail
CWE
CWE-352
Cross-Site Request Forgery (CSRF)