exploitDog

GHSA-cf79-3x47-jx24

Опубликовано: 18 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.7

Описание

Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery (CSRF) allowing attackers to execute arbitrary code and obtain sensitive information via the SameSite cookie attribute defaults value set to none

Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery (CSRF) allowing attackers to execute arbitrary code and obtain sensitive information via the SameSite cookie attribute defaults value set to none

Ссылки

EPSS

Процентиль: 21%

0.0007

Низкий

4.7 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2025-28355

CVSS3: 4.7

nvd

10 месяцев назад

Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery (CSRF) allowing attackers to execute arbitrary code and obtain sensitive information via the SameSite cookie attribute defaults value set to none

EPSS

Процентиль: 21%

0.0007

Низкий

4.7 Medium

CVSS3

CVE ID

Дефекты

CWE-352