1 results (0.012 seconds)
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 2
CVE-2012-2959 – BMC Identity Management - Cross-Site Request Forgery
https://notcve.org/view.php?id=CVE-2012-2959
11 Jun 2012 — Cross-site request forgery (CSRF) vulnerability in password-manager/changePasswords.do in BMC Identity Management Suite 7.5.00.103 allows remote attackers to hijack the authentication of administrators for requests that change passwords. Una vulnerabilidad de falsificación peticiones cruzadas (CSRF) en password-manager/changePasswords.do en BMC Identity Management Suite v7.5.00.103 permite a atacantes remotos secuestrar la autenticación de los administradores de las solicitudes de cambio de contraseñas. • https://www.exploit-db.com/exploits/37372 • CWE-352: Cross-Site Request Forgery (CSRF) •