VYPR
Unrated severityNVD Advisory· Published Aug 1, 2005· Updated Jun 16, 2026

CVE-2005-2411

CVE-2005-2411

Description

Cross-Site Request Forgery (CSRF) vulnerability in tDiary 2.1.1, and tDiary 2.0.1 and earlier, allows remote attackers to conduct actions as another user, and execute commands on the server, via a URL that is activated by the user.

Affected products

3
  • Tdiary/Tdiary3 versions
    cpe:2.3:a:tdiary:tdiary:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:tdiary:tdiary:*:*:*:*:*:*:*:*range: <=2.0.1
    • cpe:2.3:a:tdiary:tdiary:2.1.1:*:*:*:*:*:*:*
    • (no CPE)range: <= 2.1.1, and <= 2.0.1

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.