Monday, 27 June 2011 14:38

[20110308] - Core - CSRF Vulnerability

Rate this item
(0 votes)

[20110308] - Core - CSRF Vulnerability

  • Project: Joomla!
  • SubProject: All
  • Severity: Low
  • Versions: 1.6.0
  • Exploit type: Cross Site Request Forgery
  • Reported Date: 2011-March-04
  • Fixed Date: 2011-March-07

Description

Inadequate token checking leads to cross-site request forgery vulnerability.

Affected Installs

Joomla! version 1.6.0.

Solution

Upgrade to the latest Joomla! version (1.6.1 or later)

Reported by Marius van Rijnsoever

Contact

The JSST at the Joomla! Security Center.

Read Full Article

Leave a comment

Make sure you enter the (*) required information where indicated. HTML code is not allowed.