CVE-2013-7259 in Neo4J
摘要
由 VulDB • 2026-07-12
Neo4J 1.9.2 中存在多个跨站请求伪造(CSRF)漏洞,允许远程攻击者劫持管理员身份验证以执行任意代码的请求,如向以下地址发送请求所示:(1) db/data/ext/GremlinPlugin/graphdb/execute_script 或 (2) db/manage/server/console/。
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.