OMERO before 5.0.6 has multiple CSRF vulnerabilities because the framework for OMERO's web interface lacks CSRF protection.
References
Link | Resource |
---|---|
http://lists.openmicroscopy.org.uk/pipermail/ome-users/2014-November/004871.html | Vendor Advisory |
https://www.openmicroscopy.org/security/advisories/2014-SV3-csrf/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-03-31T23:38:46
Updated: 2019-03-31T23:38:46
Reserved: 2014-09-26T00:00:00
Link: CVE-2014-7198
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-04-01T00:29:00.243
Modified: 2019-04-01T14:59:08.710
Link: CVE-2014-7198
JSON object: View
Redhat Information
No data.
CWE