cpe:/a:andrew_simpson:webcollab:2.20 cpe:/a:andrew_simpson:webcollab:2.30 cpe:/a:andrew_simpson:webcollab:2.31 cpe:/a:andrew_simpson:webcollab:2.40 CVE-2009-1455 2009-04-28T12:30:03.563-04:00 2017-08-16T21:30:21.520-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-04-28T13:58:00.000-04:00 SECUNIA 34568 OSVDB 53781 MISC http://holisticinfosec.org/content/view/108/45/ CONFIRM http://sourceforge.net/project/shownotes.php?release_id=676245&group_id=75945 XF webcollab-unspecifed-csrf(49940) Multiple cross-site request forgery (CSRF) vulnerabilities in WebCollab before 2.50 (aka Billy Goat) allow remote attackers to hijack the authentication of administrators for requests that change an arbitrary password or have other unspecified impact.