exploitDog

GHSA-p4vq-xcmp-gvqq

Опубликовано: 15 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Cross-Site Request Forgery vulnerability in WBSAirback 21.02.04, which could allow an attacker to create a manipulated HTML form to perform privileged actions once it is executed by a privileged user.

Cross-Site Request Forgery vulnerability in WBSAirback 21.02.04, which could allow an attacker to create a manipulated HTML form to perform privileged actions once it is executed by a privileged user.

Ссылки

EPSS

Процентиль: 37%

0.00159

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2024-3782

CVSS3: 8.8

nvd

почти 2 года назад

Cross-Site Request Forgery vulnerability in WBSAirback 21.02.04, which could allow an attacker to create a manipulated HTML form to perform privileged actions once it is executed by a privileged user.

EPSS

Процентиль: 37%

0.00159

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352