Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jboss EAP Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2010-3878 - Vulnerability Database
Jboss EAP

Jboss EAP Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2010-3878

Medium
Reference: CVE-2010-3878
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2010-3878
Title: Jboss EAP Cross-Site Request Forgery (CSRF) Vulnerability
Overview:

Cross-site request forgery (CSRF) vulnerability in the JMX Console in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 allows remote attackers to hijack the authentication of administrators for requests that deploy WAR files.