exploitDog

GHSA-99gm-xgqq-4fwh

Опубликовано: 14 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.3

Описание

A Cross-Site Request Forgery (CSRF) in the component /endpoints/currency/currency of Wallos v4.1.1 allows attackers to execute arbitrary operations via a crafted GET request.

A Cross-Site Request Forgery (CSRF) in the component /endpoints/currency/currency of Wallos v4.1.1 allows attackers to execute arbitrary operations via a crafted GET request.

Ссылки

EPSS

Процентиль: 6%

0.00025

Низкий

7.3 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2025-60535

CVSS3: 7.3

nvd

4 месяца назад

A Cross-Site Request Forgery (CSRF) in the component /endpoints/currency/currency of Wallos v4.1.1 allows attackers to execute arbitrary operations via a crafted GET request.

EPSS

Процентиль: 6%

0.00025

Низкий

7.3 High

CVSS3

CVE ID

Дефекты

CWE-352