Description
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Bradford Network Sentry before 5.3.3 allow remote attackers to hijack the authentication of administrators for requests that (1) insert XSS sequences or (2) send messages to clients.
References (3)
Core 3
Core References
US Government Resource x_refsource_confirm
http://www.kb.cert.org/vuls/id/MAPG-8TJKAF
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/709939
Various Sources x_refsource_confirm
https://na3.salesforce.com/sfc/#version?selectedDocumentId=06950000000IySO
Scores
EPSS
0.0076
EPSS Percentile
51.0%
Details
CWE
CWE-352
Status
published
Products (3)
bradfordnetworks/network_sentry_appliance
ns500rx
bradfordnetworks/network_sentry_appliance
ns500x
bradfordnetworks/network_sentry_appliance_software
< 5.3
Published
Jun 13, 2012
Tracked Since
Feb 18, 2026