CVE-2009-4077

描述

Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that send arbitrary emails via unspecified vectors, a different vulnerability than CVE-2009-4076.

受影響套件(1)

• Debian/roundcubefrom 0, < 0.3-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-4077