Description

Cross-site request forgery (CSRF) vulnerability in the Admin web interface in OpenVPN Access Server before 1.8.5 allows remote attackers to hijack the authentication of administrators for requests that create administrative users.

Remediation

References

CVE-2013-2692

Related Vulnerabilities

Apache 2.x version equal to 2.0.51

MySQL CVE-2022-21482 Vulnerability (CVE-2022-21482)

WordPress Plugin WP Statistics Cross-Site Scripting (13.0.9)

WordPress Plugin Popup Maker-Popup for opt-ins, lead gen, & more Cross-Site Scripting (1.16.10)

OpenSSL Other Vulnerability (CVE-2015-0208)

Severity

Medium

Classification

CVE-2013-2692 CWE-352

Tags

Missing Update Known Vulnerabilities