Unrated severityNVD Advisory· Published Jul 25, 2012· Updated Jun 16, 2026
CVE-2012-4059
CVE-2012-4059
Description
Cross-site request forgery (CSRF) vulnerability in home/secretqtn.php in SocketMail Pro 2.2.9 allows remote attackers to hijack the authentication of arbitrary users for requests that change user security questions and answers via an upd action.
Affected products
2cpe:2.3:a:socketmail:socketmail:2.2.9:-:professional:*:*:*:*:*+ 1 more
- cpe:2.3:a:socketmail:socketmail:2.2.9:-:professional:*:*:*:*:*
- (no CPE)range: = 2.2.9
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.