Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in the Web Console (web-console) in Red Hat Enterprise Application Platform before 6.4.4 and WildFly (formerly JBoss Application Server) before 2.0.0.CR9 allows remote attackers to hijack the authentication of administrators for requests that make arbitrary changes to an instance via vectors involving a file upload using a multipart/form-data submission.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat JBoss Enterprise Application Platform和Wildfly 跨站请求伪造漏洞
Vulnerability Description
Red Hat JBoss Enterprise Application Platform是美国Red Hat公司的一套开源的、基于J2EE的中间件平台。该平台主要用于构建、部署和托管Java应用程序与服务。Wildfly是Wildfly的一款功能强大、模块化且轻量级的应用程序服务器。 Red Hat Enterprise Application Platform 6.4.4之前版本、WildFly 2.0.0.CR9之前版本存在跨站请求伪造漏洞。远程攻击者利用该漏洞对实例进行任意修改。
CVSS Information
N/A
Vulnerability Type
N/A