Lucene search
Veracode Vulnerability DatabaseVERACODE:13515HistoryMar 25, 2019 - 8:40 a.m.
Cross-Site Request Forgery (CSRF)
2019-03-2508:40:42
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
EPSS
0.006
Percentile
78.6%
Apache Geronimo application server is vulnerable to cross-site request forgery. Attackers can exploit the vulnerability to obtain sensitive information, upload arbitrary files, execute arbitrary script code, steal cookie-based authentication credentials, or perform certain administrative actions.
References
dsecrg.com/pages/vul/show.php?id=120
geronimo.apache.org/21x-security-report.html#2.1.xSecurityReport-214
issues.apache.org/jira/browse/GERONIMO-4597
secunia.com/advisories/34715
www.securityfocus.com/archive/1/502735/100/0/threaded
www.securityfocus.com/bid/34562
www.vupen.com/english/advisories/2009/1089
issues.apache.org/jira/browse/GERONIMO-4597
Related
osv
osv
Apache Geronimo Application Server CSRF vulnerabilities
2022-05-02 03:12:31
github
github
Apache Geronimo Application Server CSRF vulnerabilities
2022-05-02 03:12:31
packetstorm
packetstorm
Apache Geronimo Cross Site Request Forgery
2009-04-16 00:00:00
cve
cve
CVE-2009-0039
2009-04-17 14:30:00
prion
prion
Cross site request forgery (csrf)
2009-04-17 14:30:00
cvelist
cvelist
CVE-2009-0039
2009-04-17 14:00:00
nvd
nvd
CVE-2009-0039
2009-04-17 14:30:00
nessus
nessus
openvas
openvas
SLES11: Security update for Websphere Community Edition
2009-10-11 00:00:00
SLES11: Security update for Websphere Community Edition
2009-10-11 00:00:00
SLES10: Security update for Websphere Community Edition
2009-10-13 00:00:00