| Название | project_team Tmall_demo 2025/05/05 latest Cross-Site Request Forgery |
|---|
| Описание | The latest version of Tmall_demo has a CSRF vulnerability in the tmall/admin/account/logout interface.,CSRF attacks can exploit the login status of users to perform malicious operations without the user's knowledge, resulting in serious consequences such as user information leakage, account tampering, or sensitive operations being accidentally triggered. |
|---|
| Источник | ⚠️ https://github.com/bdkuzma/vuln/issues/11 |
|---|
| Пользователь | baihekuz (UID 84516) |
|---|
| Представление | 06.05.2025 08:54 (12 месяцы назад) |
|---|
| Модерация | 23.05.2025 20:41 (17 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 310211 [Tmall Demo до 20250505 logout подделка межсайтовых запросов] |
|---|
| Баллы | 19 |
|---|