CSRF Vulnerability in Kibana Reporting Plugin Version 2.4.0

CSRF Vulnerability in Kibana Reporting Plugin Version 2.4.0

CVE-2016-1000218 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Kibana Reporting plugin version 2.4.0 is vulnerable to a CSRF vulnerability that could allow an attacker to generate superfluous reports whenever an authenticated Kibana user navigates to a specially-crafted page.

Learn more about our User Device Pen Test.