VYPR
Unrated severityNVD Advisory· Published Dec 6, 2010· Updated Jun 16, 2026

CVE-2010-3449

CVE-2010-3449

Description

Cross-site request forgery (CSRF) vulnerability in Redback before 1.2.4, as used in Apache Archiva 1.0 through 1.0.3, 1.1 through 1.1.4, 1.2 through 1.2.2, and 1.3 through 1.3.1; and Apache Continuum 1.3.6, 1.4.0, and 1.1 through 1.2.3.1; allows remote attackers to hijack the authentication of administrators for requests that modify credentials.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

30
  • Apache/Archiva15 versions
    cpe:2.3:a:apache:archiva:1.0:*:*:*:*:*:*:*+ 14 more
    • cpe:2.3:a:apache:archiva:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:archiva:1.3.1:*:*:*:*:*:*:*
    • (no CPE)range: 1.0–1.0.3,1.1–1.1.4,1.2–1.2.2,1.3–1.3.1
  • cpe:2.3:a:jesse_mcconnell:redback:*:*:*:*:*:*:*:*+ 13 more
    • cpe:2.3:a:jesse_mcconnell:redback:*:*:*:*:*:*:*:*range: <=1.2.3
    • cpe:2.3:a:jesse_mcconnell:redback:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.0:alpha4:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.2:beta1:*:*:*:*:*:*
    • cpe:2.3:a:jesse_mcconnell:redback:1.2:beta2:*:*:*:*:*:*
  • Apache/Continuumllm-fuzzy
    Range: 1.1–1.2.3.1,1.3.6,1.4.0

Patches

Vulnerability mechanics

References

19

News mentions

0

No linked articles in our index yet.