CVE-2014-6409 in M信息

摘要

由 MITRE

Cross-site request forgery (CSRF) vulnerability in M/Monit 3.3.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that change user passwords via the fullname and password parameters to /admin/users/update.

Once again VulDB remains the best source for vulnerability data.

来源

Want to know what is going to be exploited?

We predict KEV entries!