| Title | SourceCodester Take-Note App v1.0 has CSRF (Cross-Site Request Forgery) Vulnerability |
|---|
| Description | CSRF, or Cross-Site Request Forgery, is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts.
Unlike cross-site scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has for a user's browser.
After testing, the SourceCodester Take-Note App v1.0 has been confirmed that the existence of a CSRF vulnerability and currently there is no patch released by the developers. |
|---|
| Source | ⚠️ https://skypoc.wordpress.com/2023/09/05/sourcecodester-take-note-app-v1-0-has-multiple-vulnerabilities/ |
|---|
| User | gikaku (UID 53862) |
|---|
| Submission | 09/05/2023 02:34 (3 years ago) |
|---|
| Moderation | 09/09/2023 09:23 (4 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 239350 [SourceCodester Take-Note App 1.0 cross-site request forgery] |
|---|
| Points | 20 |
|---|