exploitDog

GHSA-qj37-hv9r-mmr8

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

An issue was discovered in Zammad before 3.4.1. The Tag and Link REST API endpoints (for add and delete) lack a CSRF token check.

An issue was discovered in Zammad before 3.4.1. The Tag and Link REST API endpoints (for add and delete) lack a CSRF token check.

Ссылки

EPSS

Процентиль: 32%

0.00125

Низкий

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2020-26033

CVSS3: 5.4

nvd

около 5 лет назад

An issue was discovered in Zammad before 3.4.1. The Tag and Link REST API endpoints (for add and delete) lack a CSRF token check.

CVE-2020-26033

CVSS3: 5.4

debian

около 5 лет назад

An issue was discovered in Zammad before 3.4.1. The Tag and Link REST ...

EPSS

Процентиль: 32%

0.00125

Низкий

CVE ID

Дефекты

CWE-352