Bugtraq mailing list archives

Re: MkPortal Urlobox Cross Site Request Forgery

From: securityfocus () visiblesoul net
Date: 20 Dec 2006 23:29:25 -0000

This is a bogus report. Only Administrators have perms to post URLs in the Urlobox. I think we can safely assume that 
an Admin is not going to hack his own website.

-=DKC=-
mkportal.it

Current thread:

MkPortal Urlobox Cross Site Request Forgery info (Dec 19)
- <Possible follow-ups>
- Re: MkPortal Urlobox Cross Site Request Forgery securityfocus (Dec 21)
- Re: MkPortal Urlobox Cross Site Request Forgery securityfocus (Dec 21)