CVE-2013-7057 Information

Description

Cross-site request forgery (CSRF) vulnerability in Axway SecureTransport 5.1 SP2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that upload arbitrary files via a crafted request to api/v1.0/files/.

Reference

http://osvdb.org/show/osvdb/113851 http://www.exploit-db.com/exploits/35046 https://exchange.xforce.ibmcloud.com/vulnerabilities/98320