Description
Cross-site request forgery (CSRF) vulnerability in Elasticsearch Kibana before 4.1.3 and 4.2.x before 4.2.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Remediation
References
http://www.securityfocus.com/archive/1/536935/100/0/threaded
https://www.elastic.co/community/security/
Related Vulnerabilities
CVE-2016-0791 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2022-45384 Vulnerability in maven package org.jenkins-ci.plugins:reverse-proxy-auth-plugin
CVE-2020-2269 Vulnerability in maven package org.jenkins-ci.plugins:chosen-views-tabbar
CVE-2023-37947 Vulnerability in maven package org.openshift.jenkins:openshift-login