Frontpage

I am totally relaxed!

Because I know Joomlamonitor is working for me. Whenever my website is down, I get an instant alert (and a copy goes to my web-host too!)
Do you wanna try?

Searching for files online? File search system - best decision. Seop for search engine optimization. Now you can build a website by yourself.

[20110308] - Core - CSRF Vulnerability

Project: Joomla!
SubProject: All
Severity: Low
Versions: 1.6.0
Exploit type: Cross Site Request Forgery
Reported Date: 2011-March-04
Fixed Date: 2011-March-07

Description

Inadequate token checking leads to cross-site request forgery vulnerability.

Affected Installs

Joomla! version 1.6.0.

Solution

Upgrade to the latest Joomla! version (1.6.1 or later)

Reported by Marius van Rijnsoever

Contact

The JSST at the Joomla! Security Center.

Read full...

Author:

< Prev		Next >

More Articles in This Category
[20110604] - XSS Vulnerability [20090605] - Core - Frontend XSS - PHP_SELF not properly filtered [20101001] - Core - XSS Vulnerabilities [20110201] - Core - SQL Injection / Path Disclosure [20110402] - Core - Information Disclosure	[20090603] - Core - Frontend XSS [20110308] - Core - CSRF Vulnerability [20090722] - Core - File Upload [20100423] - Core - Password Reset Tokens [20110903] - Core - Information Disclosure