CSRF in Axway Securetransport
CVE-2013-7057
Cross-site request forgery (CSRF) vulnerability in Axway SecureTransport 5.1 SP2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that upload arbitrary files via a crafted request to api/v1…
Vulnerability class: CSRF (Cross-Site Request Forgery)
EPSS: 0.014 (69.7th percentile) — read the EPSS interpretation.
Affected products
- Axway Securetransport
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (Exploit, exploit, x_refsource_EXPLOIT-DB)