mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-05 06:10:47 +00:00
803 B
803 B
CVE-2014-7190
Description
Multiple cross-site request forgery (CSRF) vulnerabilities in Openfiler 2.99.1 allow remote attackers to hijack the authentication of administrators for requests that (1) shutdown or (2) reboot the server via a request to admin/system_shutdown.html.
POC
Reference
- http://packetstormsecurity.com/files/128455/Openfiler-2.99.1-Denial-Of-Service.html
- http://seclists.org/fulldisclosure/2014/Sep/109
Github
No PoCs found on GitHub currently.