VYPR
Unrated severityNVD Advisory· Published Mar 2, 2007· Updated Jun 16, 2026

CVE-2007-1157

CVE-2007-1157

Description

Cross-site request forgery (CSRF) vulnerability in jmx-console/HtmlAdaptor in JBoss allows remote attackers to perform privileged actions as administrators via certain MBean operations, a different vulnerability than CVE-2006-3733.

Affected products

2
  • JBoss/JBoss2 versions
    cpe:2.3:a:jboss:jboss:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:jboss:jboss:*:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.