CSRF Vulnerability in Corporater EPM Suite Allows Password Hijacking

CSRF Vulnerability in Corporater EPM Suite Allows Password Hijacking

CVE-2013-3583 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in saveProperties.html in Corporater EPM Suite allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords.

Learn more about our User Device Pen Test.