Cross-Site Request Forgery Vulnerability in OpenText ECM by OpenText
CVE-2010-5283

Currently unrated

Key Information:

Vendor: Opentext
Status: Livelink Ecm
Vendor: CVE Published:; 26 November 2012

What is CVE-2010-5283?

A Cross-Site Request Forgery (CSRF) vulnerability in OpenText ECM versions allows remote attackers to exploit user sessions, specifically targeting administrators. This flaw can lead to unauthorized changes to folder and resource permissions, creating opportunities for attackers to manipulate system settings without proper authentication. Organizations utilizing OpenText ECM are advised to implement security measures to protect against potential exploitation of this vulnerability.

References

http://www.osvdb.org/68255

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/41553

third-party-advisoryx_refsource_SECUNIA

http://packetstormsecurity.org/1009-exploits/opentext-xsr...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 26, 2012
Vulnerability Reserved
Nov 26, 2012

Opentext

What is CVE-2010-5283?

References

Timeline