CVE-2008-6587

Cross-site request forgery (CSRF) vulnerability in index.tmpl in Vuze (formerly Azureus HTML WebUI), probably 0.7.6, allows remote attackers to hijack the authentication of users for requests that force the download of arbitrary torrent files via the upurl parameter.
Configurations

Configuration 1

cpe:2.3:a:vuze:vuze:0.7.6:*:*:*:*:*:*:*

Information

Published : 2009-04-03 06:30

Updated : 2018-10-11 08:57


NVD link : CVE-2008-6587

Mitre link : CVE-2008-6587

Products Affected
No products.
CWE