Back to search
CVE-2015-4460
Published: Jul 16, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
Cross-site request forgery (CSRF) vulnerability in SecuritySetting/UserSecurity/UserManagement.aspx in B.A.S C2Box before 4.0.0 (r19171) allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts via certain vectors.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://raw.githubusercontent.com/Siros96/CSRF/master/PoC
x_refsource_MISC
37447
exploit
x_refsource_EXPLOIT-DB
20150627 CSRF Vulnerability in C2Box application CVE-2015-4460
mailing-list
x_refsource_BUGTRAQ
75569
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now