CVE-2012-1058

N/A Unknown

Published: February 14, 2012 Modified: April 29, 2026

Description

Cross-site request forgery (CSRF) vulnerability in Flyspray 0.9.9.6 allows remote attackers to hijack the authentication of admins for requests that add admin accounts via an admin.newuser action to index.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/78923

Source: cve@mitre.org

http://packetstormsecurity.org/files/109507/Flyspray-0.9.9.6-Cross-Site-Request-Forgery.html

Source: cve@mitre.org

Exploit

http://secunia.com/advisories/47881

Source: cve@mitre.org

Vendor Advisory

http://www.exploit-db.com/exploits/18468

Source: cve@mitre.org

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/73051

Source: cve@mitre.org

http://osvdb.org/78923