| 标题 | SourceCodester Gym Management System V1.0 Cross-Site Request Forgery |
|---|
| 描述 | The target system is vulnerable to Cross-Site Request Forgery (CSRF). It does not verify the origin of sensitive requests nor validate CSRF tokens. This allows an attacker to craft malicious web pages that can trigger unwanted actions on behalf of authenticated users, potentially compromising the system's business logic. |
|---|
| 来源 | ⚠️ https://github.com/alc9700jmo/CVE/issues/15 |
|---|
| 用户 | alc9700 (UID 79368) |
|---|
| 提交 | 2025-06-19 11時13分 (1 年前) |
|---|
| 管理 | 2025-06-21 07時40分 (2 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 313584 [SourceCodester Gym Management System 1.0 跨网站请求伪造] |
|---|
| 积分 | 18 |
|---|