| Название | Surya2Developer Hostel Management Service 1.0 Cross-Site Request Forgery |
|---|
| Описание | On the change-password functionality, an attacker can induce a user to do unintended password change by visiting an attacker controlled website. |
|---|
| Источник | ⚠️ https://github.com/blackslim3/cve_sidequest/blob/main/poc/CSRF%20on%20Hostel%20Management%20System%20using%20PHP%20and%20MySQL%201.0.md |
|---|
| Пользователь | blackslim3 (UID 64963) |
|---|
| Представление | 06.03.2024 09:38 (2 лет назад) |
|---|
| Модерация | 15.03.2024 01:18 (9 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 256889 [Surya2Developer Hostel Management Service 1.0 Password Change /change-password.php oldpassword подделка межсайтовых запросов] |
|---|
| Баллы | 15 |
|---|