Cross-site request forgery (CSRF) vulnerability in Axway SecureTransport 5.1 SP2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that upload arbitrary files via a crafted request to api/v1.0/files/.
oryginał ENAV:N/AC:M/Au:N/C:P/I:P/A:PAxway Securetransport
APPAxway≤ 5.1
Powiązane podatności
Axway SecureTransport 5.x through 5.3 (or 5.x through 5.5 with certain API configuration) is vulnerable to una...
Multiple directory traversal vulnerabilities in Axway SecureTransport 5.1 SP2 and earlier allow remote authent...
Vordel XML Gateway (acquired by Axway) version 7.2.2 could allow remote attackers to cause a denial of service...
In Axway File Transfer Direct 2.7.1, an unauthenticated Directory Traversal vulnerability can be exploited by ...
Axway Secure Messenger before 6.5 Updated Release 7, as used in Axway Email Firewall, provides different respo...