| Título | code-projects Blood Bank Management System 1 Cross-Site Request Forgery |
|---|
| Descrição | There is a Cross Site Request Forgery on this endpoint `/file/request.php` which allows a remote user to initiate a `blood sample` request on the account of a `receiver` who is logged in, from the available blood sample of a selected hospital |
|---|
| Fonte | ⚠️ https://github.com/bevennyamande/receiver_request_sample_csrf |
|---|
| Utilizador | 0xbeven (UID 76739) |
|---|
| Submissão | 31/10/2024 00h00 (há 2 anos) |
|---|
| Moderação | 31/10/2024 16h33 (17 hours later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 282615 [code-projects Blood Bank Management System 1.0 /file/request.php Falsificação de Pedido entre Sites] |
|---|
| Pontos | 16 |
|---|