CVE-2013-3269

Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0 allows remote attackers to hijack the authentication of arbitrary users for requests that change mobile passwords, a different vulnerability than CVE-2013-2305.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cybozu:cybozu_office:*:*:*:*:*:*:*:*
cpe:2.3:a:cybozu:cybozu_office:6:*:*:*:*:*:*:*
cpe:2.3:a:cybozu:cybozu_office:7:*:*:*:*:*:*:*
cpe:2.3:a:cybozu:cybozu_office:9:*:*:*:*:*:*:*
cpe:2.3:a:cybozu:cybozu_office:9.2.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2013-04-25 10:55

Updated : 2024-02-28 12:00


NVD link : CVE-2013-3269

Mitre link : CVE-2013-3269

CVE.ORG link : CVE-2013-3269


JSON object : View

Products Affected

cybozu

  • cybozu_office
CWE
CWE-352

Cross-Site Request Forgery (CSRF)