提交 #628765: mtons https://gitee.com/mtons/mblog <=3.5.0 CSRF信息

标题mtons https://gitee.com/mtons/mblog <=3.5.0 CSRF
描述The application has no CSRF protection, allowing attackers to leverage CSRF to launch various attacks against admin users. Particularly when combined with XSS vulnerabilities, this would enable attackers to steal admin and normal users' credentials
来源⚠️ https://gitee.com/mtons/mblog/issues/ICPMGP
用户
 ZAST.AI (UID 87884)
提交2025-08-05 09時10分 (9 月前)
管理2025-08-13 19時00分 (8 days later)
状态已接受
VulDB条目319988 [mtons mblog 直到 3.5.0 跨网站请求伪造]
积分16

上一步一览下一步

Might our Artificial Intelligence support you?

Check our Alexa App!