exploitDog

GHSA-p777-v2c9-7gxq

Опубликовано: 11 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Cross-site request forgery (CSRF) vulnerability exists in Ninja Forms prior to 3.4.31. If a website administrator views a malicious page while logging in, unintended operations may be performed.

Cross-site request forgery (CSRF) vulnerability exists in Ninja Forms prior to 3.4.31. If a website administrator views a malicious page while logging in, unintended operations may be performed.

Ссылки

EPSS

Процентиль: 41%

0.00191

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2024-25572

CVSS3: 8.8

nvd

почти 2 года назад

Cross-site request forgery (CSRF) vulnerability exists in Ninja Forms prior to 3.4.31. If a website administrator views a malicious page while logging in, unintended operations may be performed.

EPSS

Процентиль: 41%

0.00191

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352