Description
Cross-site request forgery (CSRF) vulnerability in logout.action in Atlassian Confluence 3.4.6 allows remote attackers to hijack the authentication of administrators for requests that logout the user via a comment.
Remediation
References
Related Vulnerabilities
Microsoft SQL Server CVE-2023-36730 Vulnerability (CVE-2023-36730)
SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1453)
WordPress Plugin WP Super Cache Multiple Vulnerabilities (1.4.4)
WordPress Plugin Advanced Classifieds & Directory Pro Cross-Site Scripting (1.7.5)
IBM RTC Inadequate Encryption Strength Vulnerability (CVE-2020-4965)