Soumettre #600558: SourceCodester Gym Management System V1.0 Cross-Site Request Forgeryinformation

TitreSourceCodester Gym Management System V1.0 Cross-Site Request Forgery
DescriptionThe target system is vulnerable to Cross-Site Request Forgery (CSRF). It does not verify the origin of sensitive requests nor validate CSRF tokens. This allows an attacker to craft malicious web pages that can trigger unwanted actions on behalf of authenticated users, potentially compromising the system's business logic.
La source⚠️ https://github.com/alc9700jmo/CVE/issues/15
Utilisateur
 alc9700 (UID 79368)
Soumission19/06/2025 11:13 (il y a 1 Année)
Modérer21/06/2025 07:40 (2 days later)
StatutAccepté
Entrée VulDB313584 [SourceCodester Gym Management System 1.0 cross site request forgery]
Points18

Do you know our Splunk app?

Download it now for free!