cve/CVE-2015-3624.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

894 B

Raw Permalink Blame History

CVE-2015-3624

Description

Cross-site request forgery (CSRF) vulnerability in Test/WorkArea/DmsMenu/menuActions/MenuActions.aspx in Ektron Content Management System (CMS) before 9.10 SP1 (Build 9.1.0.184.1.120) allows remote attackers to hijack the authentication of content administrators for requests that delete content via a delete action.

POC

Reference

http://packetstormsecurity.com/files/132104/Ektron-CMS-9.10-SP1-Cross-Site-Request-Forgery.html
https://www.exploit-db.com/exploits/37296/

Github

https://github.com/ARPSyndicate/cvemon

894 B Raw Permalink Blame History

CVE-2015-3624

Description

POC

Reference

Github

894 B

Raw Permalink Blame History