| Titolo | code-projects Traffic Offense Reporting System 1.0 Cross-Site Request Forgery |
|---|
| Descrizione | During security assessment of "Traffic Offense Reporting System", a CSRF vulnerability was discovered in all functionalities that modify the system status and user data. The system lacks CSRF protection mechanisms, enabling attackers to forge malicious requests that execute privileged actions via authenticated victims' browsers. Immediate implementation of anti-CSRF measures is required to prevent unauthorized operations. |
|---|
| Fonte | ⚠️ https://github.com/tuooo/CVE/issues/3 |
|---|
| Utente | DS_Leo (UID 86084) |
|---|
| Sottomissione | 05/06/2025 08:28 (1 Anno fa) |
|---|
| Moderazione | 05/06/2025 17:02 (9 hours later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 311259 [code-projects Traffic Offense Reporting System 1.0 cross site request forgery] |
|---|
| Punti | 19 |
|---|