제출 #491600: webkul qloapps 1.6.1 Cross-Site Request Forgery정보

제목webkul qloapps 1.6.1 Cross-Site Request Forgery
설명The QloApps application is vulnerable to a Cross-Site Request Forgery (CSRF) attack via the logout functionality. By submitting a specially crafted URL, an attacker can force a user to log out without their knowledge or consent. This can be triggered by visiting a malicious webpage, causing the user to be immediately logged out. This vulnerability exposes users to potential Denial of Service (DoS), admin disruption, and manipulation of login sessions, especially for authenticated users or administrators.
원천⚠️ https://github.com/mano257200/qloapps-csrf-logout-vulnerability
사용자
 Mahendravarman (UID 80955)
제출2025. 01. 29. PM 08:47 (1 년도 ago)
모더레이션2025. 02. 06. AM 07:59 (7 days later)
상태수락
VulDB 항목294834 [Webkul QloApps 1.6.1 URL /en/?mylogout 교차 사이트 요청 위조]
포인트들20

Interested in the pricing of exploits?

See the underground prices here!