Description
Multiple cross-site request forgery (CSRF) vulnerabilities in Apache Archiva 1.3.9 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) add new repository proxy connectors via the token parameter to admin/addProxyConnector_commit.action, (2) new repositories via the token parameter to admin/addRepository_commit.action, (3) edit existing repositories via the token parameter to admin/editRepository_commit.action, (4) add legacy artifact paths via the token parameter to admin/addLegacyArtifactPath_commit.action, (5) change the organizational appearance via the token parameter to admin/saveAppearance.action, or (6) upload new artifacts via the token parameter to upload_submit.action.
Remediation
References
http://packetstormsecurity.com/files/137869/Apache-Archiva-1.3.9-Cross-Site-Request-Forgery.html
http://seclists.org/fulldisclosure/2016/Jul/37
http://www.securityfocus.com/archive/1/538877/100/0/threaded
http://www.securityfocus.com/bid/91703
http://www.securitytracker.com/id/1036475
https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8%40%3Ccommits.pulsar.apache.org%3E
https://www.exploit-db.com/exploits/40109/
Related Vulnerabilities
CVE-2023-26920 Vulnerability in maven package org.webjars.npm:fast-xml-parser
CVE-2021-30074 Vulnerability in npm package docsify
CVE-2022-42466 Vulnerability in maven package org.apache.isis.commons:isis-commons
CVE-2022-25873 Vulnerability in maven package org.webjars.npm:vuetify
CVE-2022-25646 Vulnerability in npm package x-data-spreadsheet