Description
Cross-site request forgery (CSRF) vulnerability in the JMX Console in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 allows remote attackers to hijack the authentication of administrators for requests that deploy WAR files.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2015-0370 Vulnerability (CVE-2015-0370)
WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist Directory Traversal (6.45)
WordPress Plugin OdiHost Newsletter 'openstat.php' SQL Injection (1.0)
WordPress Plugin Store Locator Plus for WordPress Cross-Site Scripting (4.5.10)
WordPress Plugin Ajax Multi Upload 'upload.php' Arbitrary File Upload (1.1)