01642 06 11 11 Arrange Call

CSRF Vulnerability in Cybozu Office, Dezie, and Mailwise Allows Password Hijacking

CVE-2013-2305 · MEDIUM

CVE-2013-2305

Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0, Cybozu Dezie before 8.0.7, and Cybozu Mailwise before 5.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords.

Learn more about our Cis Benchmark Audit For Microsoft Office.