Security Hero Rotating Header Image

1339 (twiki)

CVE-2009-1339 (twiki)

Cross-site request forgery (CSRF) vulnerability in TWiki before 4.3.1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that update pages, as demonstrated by a URL for a save script in the SRC attribute of an IMG element, a related issue to CVE-2009-1434.


Leave a Reply

Your email address will not be published. Required fields are marked *