exploitDog

GHSA-jg8v-v78g-vjrq

Опубликовано: 19 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 2.1

CVSS3: 4.3

Описание

A vulnerability was detected in technical-laohu mpay up to 1.2.4. This affects an unknown function. Performing a manipulation results in cross-site request forgery. Remote exploitation of the attack is possible. The exploit is now public and may be used.

A vulnerability was detected in technical-laohu mpay up to 1.2.4. This affects an unknown function. Performing a manipulation results in cross-site request forgery. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Ссылки

EPSS

Процентиль: 9%

0.00031

Низкий

2.1 Low

CVSS4

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2026-1153

CVSS3: 4.3

nvd

20 дней назад

A vulnerability was detected in technical-laohu mpay up to 1.2.4. This affects an unknown function. Performing a manipulation results in cross-site request forgery. Remote exploitation of the attack is possible. The exploit is now public and may be used.

EPSS

Процентиль: 9%

0.00031

Низкий

2.1 Low

CVSS4

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352