إرسال #623479: ZHENFENG13 https://github.com/ZHENFENG13/My-Blog <=1.0.0 CSRFالمعلومات

عنوانZHENFENG13 https://github.com/ZHENFENG13/My-Blog <=1.0.0 CSRF
الوصفThe application has no CSRF protection, allowing attackers to leverage CSRF to launch various attacks against admin users. Particularly when combined with XSS vulnerabilities, this would enable attackers to target both frontend users and admin users.
المصدر⚠️ https://github.com/ZHENFENG13/My-Blog/issues/145
المستخدم
 ZAST.AI (UID 87884)
ارسال26/07/2025 06:26 PM (9 أشهر منذ)
الاعتدال08/08/2025 10:35 AM (13 days later)
الحالةتمت الموافقة
إدخال VulDB319235 [zhenfeng13 My-Blog حتى 1.0.0 /admin/tags/save tagName تزوير طلبات عبر المواقع]
النقاط16

التالي نظرة عامة السابق

Want to stay up to date on a daily basis?

Enable the mail alert feature now!