CVE-2013-6018

Tyler Technologies TaxWeb 3.13.3.1 - Cross-Site Request Forgery in login.jsp

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in login.jsp in Tyler Technologies TaxWeb 3.13.3.1 allows remote attackers to hijack the authentication of arbitrary users for requests that change a password.

References (1)

Core 1
Core References
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/911678

Scores

EPSS 0.0062
EPSS Percentile 45.4%

Details

CWE
CWE-352
Status published
Products (1)
tylertech/taxweb 3.13.3.1
Published Oct 28, 2013
Tracked Since Feb 18, 2026