| 标题 | SourceCodester Take-Note App v1.0 has CSRF (Cross-Site Request Forgery) Vulnerability |
|---|
| 描述 | CSRF, or Cross-Site Request Forgery, is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts.
Unlike cross-site scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has for a user's browser.
After testing, the SourceCodester Take-Note App v1.0 has been confirmed that the existence of a CSRF vulnerability and currently there is no patch released by the developers. |
|---|
| 来源 | ⚠️ https://skypoc.wordpress.com/2023/09/05/sourcecodester-take-note-app-v1-0-has-multiple-vulnerabilities/ |
|---|
| 用户 | gikaku (UID 53862) |
|---|
| 提交 | 2023-09-05 02時34分 (3 年前) |
|---|
| 管理 | 2023-09-09 09時23分 (4 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 239350 [SourceCodester Take-Note App 1.0 跨网站请求伪造] |
|---|
| 积分 | 20 |
|---|