Enviar #597023: code-projects School Fees Payment System 1.0 Cross-Site Request Forgeryinformación

Títulocode-projects School Fees Payment System 1.0 Cross-Site Request Forgery
DescripciónDuring security assessment of "School Fees Payment System", a CSRF vulnerability was discovered in all functionalities that modify the system status and user data. The system lacks CSRF protection mechanisms, enabling attackers to forge malicious requests that execute privileged actions via authenticated victims' browsers. Immediate implementation of anti-CSRF measures is required to prevent unauthorized operations.
Fuente⚠️ https://github.com/tuooo/CVE/issues/15
Usuario
 DS_Leo (UID 86084)
Sumisión2025-06-14 12:37 (hace 10 meses)
Moderación2025-06-19 12:34 (5 days later)
EstadoAceptado
Entrada de VulDB313336 [code-projects School Fees Payment System 1.0 falsificación de solicitudes en sitios cruzados]
Puntos19

AnteriorVisión De ConjuntoPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!