| Título | SourceCodester Take-Note App v1.0 has CSRF (Cross-Site Request Forgery) Vulnerability |
|---|
| Descrição | CSRF, or Cross-Site Request Forgery, is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts.
Unlike cross-site scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has for a user's browser.
After testing, the SourceCodester Take-Note App v1.0 has been confirmed that the existence of a CSRF vulnerability and currently there is no patch released by the developers. |
|---|
| Fonte | ⚠️ https://skypoc.wordpress.com/2023/09/05/sourcecodester-take-note-app-v1-0-has-multiple-vulnerabilities/ |
|---|
| Utilizador | gikaku (UID 53862) |
|---|
| Submissão | 05/09/2023 02h34 (há 3 anos) |
|---|
| Moderação | 09/09/2023 09h23 (4 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 239350 [SourceCodester Take-Note App 1.0 Falsificação de Pedido entre Sites] |
|---|
| Pontos | 20 |
|---|