Lucene search
MitreCVELIST:CVE-2008-0563HistoryFeb 04, 2008 - 11:00 p.m.
CVE-2008-0563
2008-02-0423:00:00
mitre
www.cve.org
2
cross-site request forgery
userlocalserviceimpl.java
liferay portal 4.3.6
remote attackers
forgot password
user-agent http header
Cross-site request forgery (CSRF) vulnerability in service/impl/UserLocalServiceImpl.java in Liferay Portal 4.3.6 allows remote attackers to perform unspecified actions as unspecified authenticated users via the User-Agent HTTP header, which is used when composing Forgot Password e-mail messages in HTML format.
References
Related
cve
cve
CVE-2008-0563
2008-02-05 00:00:00
prion
prion
Cross site request forgery (csrf)
2008-02-05 00:00:00
nvd
nvd
CVE-2008-0563
2008-02-05 00:00:00