CSRF in Cisco Webex_training_center

CVE-2013-1109

Cross-site request forgery (CSRF) vulnerability in testingLibraryAction.do in the Training Center testing library in Cisco WebEx Training Center allows remote attackers to hijack the authentication of arbitrary users for requests that dele…

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.001 (31.0th percentile) — read the EPSS interpretation.

Affected products

Cisco Webex_training_center
N/a — versions n/a

Weakness classification (CWE)

CWE-352 — Cross-Site Request Forgery (CSRF)

References

20130114 Cross-Site Request Forgery Vulnerability in testingLibraryAction.do (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
1028016 (vdb-entry, x_refsource_SECTRACK)