Vulnerabilities > ICZ > Sencha SNS
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-04-06 | CVE-2012-1238 | Cross-Site Request Forgery vulnerability in ICZ Sencha SNS 1.0.0/1.0.1 Session fixation vulnerability in SENCHA SNS before 1.0.2 allows remote attackers to hijack web sessions via unspecified vectors. network icz | 4.3 |
2012-04-06 | CVE-2012-1237 | Cross-Site Request Forgery (CSRF) vulnerability in ICZ Sencha SNS 1.0.0/1.0.1 Cross-site request forgery (CSRF) vulnerability in SENCHA SNS before 1.0.2 allows remote attackers to hijack the authentication of arbitrary users. | 6.8 |