VYPR
Unrated severityNVD Advisory· Published Feb 25, 2010· Updated Jun 16, 2026

CVE-2010-0709

CVE-2010-0709

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in Limny 2.0 allow remote attackers to (1) hijack the authentication of users or administrators for requests that change the email address or password via the user action to index.php, and (2) hijack the authentication of the administrator for requests that create a new user via the admin/modules/user/new action to limny/index.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Limny/Limny2 versions
    cpe:2.3:a:limny:limny:2.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:limny:limny:2.0:*:*:*:*:*:*:*
    • (no CPE)range: =2.0

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.