| Название | SourceCodester Take-Note App v1.0 has CSRF (Cross-Site Request Forgery) Vulnerability |
|---|
| Описание | CSRF, or Cross-Site Request Forgery, is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts.
Unlike cross-site scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has for a user's browser.
After testing, the SourceCodester Take-Note App v1.0 has been confirmed that the existence of a CSRF vulnerability and currently there is no patch released by the developers. |
|---|
| Источник | ⚠️ https://skypoc.wordpress.com/2023/09/05/sourcecodester-take-note-app-v1-0-has-multiple-vulnerabilities/ |
|---|
| Пользователь | gikaku (UID 53862) |
|---|
| Представление | 05.09.2023 02:34 (3 лет назад) |
|---|
| Модерация | 09.09.2023 09:23 (4 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 239350 [SourceCodester Take-Note App 1.0 подделка межсайтовых запросов] |
|---|
| Баллы | 20 |
|---|