| Título | SourceCodester Take-Note App v1.0 has CSRF (Cross-Site Request Forgery) Vulnerability |
|---|
| Descripción | CSRF, or Cross-Site Request Forgery, is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts.
Unlike cross-site scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has for a user's browser.
After testing, the SourceCodester Take-Note App v1.0 has been confirmed that the existence of a CSRF vulnerability and currently there is no patch released by the developers. |
|---|
| Fuente | ⚠️ https://skypoc.wordpress.com/2023/09/05/sourcecodester-take-note-app-v1-0-has-multiple-vulnerabilities/ |
|---|
| Usuario | gikaku (UID 53862) |
|---|
| Sumisión | 2023-09-05 02:34 (hace 3 años) |
|---|
| Moderación | 2023-09-09 09:23 (4 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 239350 [SourceCodester Take-Note App 1.0 falsificación de solicitudes en sitios cruzados] |
|---|
| Puntos | 20 |
|---|