Vulnerabilities > CVE-2006-3671 - Cross-Site Request Forgery vulnerability in Hyper Estraier
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site request forgery (CSRF) vulnerability in the communicate function in estmaster.c for Hyper Estraier before 1.3.3 allows remote attackers to perform unauthorized actions as other users via unknown vectors. This vulnerability is addressed in the following product release: Hyper Estraier, Hyper Estraier, 1.3.3