← Back to CVE List
CVE-2018-11538
Published:
2018-06-01T19:29Z
Last Modified:
2024-11-21T03:43Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
servlet/UserServlet in SearchBlox 8.6.6 has CSRF via the u_name, u_passwd1, u_passwd2, role, and X-XSRF-TOKEN POST parameters because of CSRF Token Bypass. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt