Enviar #640421: GitHub koillection 1.6.18 Cross-Site Request Forgeryinformación

TítuloGitHub koillection 1.6.18 Cross-Site Request Forgery
DescripciónA CSRF vulnerability is present on the latest version of koillection (1.6.18) allowing an attacker to submit form changes, specifically on the /profile endpoint of an authenticated user. This vulnerability allows the attacker to change user credentials, such as username, email and password to achieve account takeover.
Fuente⚠️ https://github.com/benjaminjonard/koillection/issues/1393
Usuario balejin (UID 89385)
Sumisión2025-08-23 09:27 (hace 10 meses)
Moderación2025-08-30 22:57 (8 days later)
EstadoAceptado
Entrada de VulDB322047 [Koillection hasta 1.6.18 csrf_protection_controller.js falsificación de solicitudes en sitios cruzados]
Puntos18

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!