| 제목 | unitecms oasys 1.0 Unauthorized |
|---|
| 설명 | By utilizing the user's login status, a forged request is sent to the target website without the user's knowledge. Attackers usually place malicious code on third-party websites. When users visit the website, the malicious code will automatically send fake requests to the target website, thereby achieving the purpose of the attack. XS and CSS can also be combined to achieve more influential attacks. |
|---|
| 원천 | ⚠️ https://github.com/misstt123/oasys/issues/11 |
|---|
| 사용자 | moyu666 (UID 83894) |
|---|
| 제출 | 2025. 04. 08. AM 11:35 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 04. 16. AM 03:21 (8 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 304976 [misstt123 oasys 1.0 Sticky Notes 교차 사이트 요청 위조] |
|---|
| 포인트들 | 19 |
|---|