Submit #294125: Surya2Developer Hostel Management Service 1.0 Cross-Site Request Forgeryinfo

TitleSurya2Developer Hostel Management Service 1.0 Cross-Site Request Forgery
DescriptionOn the change-password functionality, an attacker can induce a user to do unintended password change by visiting an attacker controlled website.
Source⚠️ https://github.com/blackslim3/cve_sidequest/blob/main/poc/CSRF%20on%20Hostel%20Management%20System%20using%20PHP%20and%20MySQL%201.0.md
User
 blackslim3 (UID 64963)
Submission03/06/2024 09:38 (2 years ago)
Moderation03/15/2024 01:18 (9 days later)
StatusAccepted
VulDB entry256889 [Surya2Developer Hostel Management Service 1.0 Password Change /change-password.php oldpassword cross-site request forgery]
Points15

Want to stay up to date on a daily basis?

Enable the mail alert feature now!