mblog <=3.5.0 CSRFinfo

Titel	mtons https://gitee.com/mtons/mblog <=3.5.0 CSRF
Beschreibung	The application has no CSRF protection, allowing attackers to leverage CSRF to launch various attacks against admin users. Particularly when combined with XSS vulnerabilities, this would enable attackers to steal admin and normal users' credentials
Quelle	⚠️ https://gitee.com/mtons/mblog/issues/ICPMGP
Benutzer	ZAST.AI (UID 87884)
Einreichung	05.08.2025 09:10 (vor 9 Monaten)
Moderieren	13.08.2025 19:00 (8 days later)
Status	Akzeptiert
VulDB Eintrag	319988 [mtons mblog bis 3.5.0 Cross Site Request Forgery]
Punkte	16

Do you need the next level of professionalism?

Upgrade your account now!