Description
A flaw was found in Jolokia versions from 1.2 to before 1.6.1. Affected versions are vulnerable to a system-wide CSRF. This holds true for properly configured instances with strict checking for origin and referrer headers. This could result in a Remote Code Execution attack.
Remediation
References
Related Vulnerabilities
MediaWiki CVE-2022-28209 Vulnerability (CVE-2022-28209)
phpList Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-22249)
Oracle JRE CVE-2013-5817 Vulnerability (CVE-2013-5817)
WordPress Plugin Thrive Dashboard Security Bypass (2.3.9.2)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4112)