Soumettre #628765: mtons https://gitee.com/mtons/mblog <=3.5.0 CSRFinformation

Titremtons https://gitee.com/mtons/mblog <=3.5.0 CSRF
DescriptionThe application has no CSRF protection, allowing attackers to leverage CSRF to launch various attacks against admin users. Particularly when combined with XSS vulnerabilities, this would enable attackers to steal admin and normal users' credentials
La source⚠️ https://gitee.com/mtons/mblog/issues/ICPMGP
Utilisateur
 ZAST.AI (UID 87884)
Soumission05/08/2025 09:10 (il y a 9 mois)
Modérer13/08/2025 19:00 (8 days later)
StatutAccepté
Entrée VulDB319988 [mtons mblog jusqu’à 3.5.0 cross site request forgery]
Points16

PrécédentAperçuSuivant