| عنوان | Sourcecodester Contact Manager App Has CSRF Vulnerability |
|---|
| الوصف | CSRF, short for Cross-Site Request Forgery, is a type of attack in which an attacker tricks a victim into performing actions on a web application in which they're authenticated. This occurs when a user is induced to click a link, visit a malicious website, or receive messages via email or instant messaging, which leads to the user unknowingly sending an HTTP request forged by the attacker to the targeted website.
Sourcecodester Contact Manager App has a CSRF vulnerability that allows unauthorized deletion of any contact information.
Proof of vulnerability and replication, please refer to the Explore link |
|---|
| المصدر | ⚠️ https://skypoc.wordpress.com/2023/09/05/vuln1/ |
|---|
| المستخدم | gikaku (UID 53862) |
|---|
| ارسال | 06/09/2023 01:42 AM (3 سنوات منذ) |
|---|
| الاعتدال | 09/09/2023 10:16 AM (3 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 239354 [SourceCodester Contact Manager App 1.0 update.php تزوير طلبات عبر المواقع] |
|---|
| النقاط | 20 |
|---|