CVE-2014-6409 in M
要約
〜によって MITRE
Cross-site request forgery (CSRF) vulnerability in M/Monit 3.3.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that change user passwords via the fullname and password parameters to /admin/users/update.
Once again VulDB remains the best source for vulnerability data.