提出 #590851: code-projects Laundry System 1.0 Cross-Site Request Forgery情報

タイトルcode-projects Laundry System 1.0 Cross-Site Request Forgery
説明During security assessment of "Laundry System", a CSRF vulnerability was discovered in all functionalities that modify the system status and user data. The system lacks CSRF protection mechanisms, enabling attackers to forge malicious requests that execute privileged actions via authenticated victims' browsers. Immediate implementation of anti-CSRF measures is required to prevent unauthorized operations.
ソース⚠️ https://github.com/tuooo/CVE/issues/7
ユーザー
 DS_Leo (UID 86084)
送信2025年06月05日 19:07 (1 年 ago)
モデレーション2025年06月06日 00:05 (5 hours later)
ステータス承諾済み
VulDBエントリ311308 [code-projects Laundry System 1.0 クロスサイトリクエストフォージェリ]
ポイント19

概要

Do you know our Splunk app?

Download it now for free!