exploitDog

GHSA-x3hv-xrrp-rmx2

Опубликовано: 06 янв. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.1

Описание

Grocy through 4.3.0 has no CSRF protection, as demonstrated by changing the Administrator's password.

Grocy through 4.3.0 has no CSRF protection, as demonstrated by changing the Administrator's password.

Ссылки

EPSS

Процентиль: 6%

0.00025

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2024-55076

CVSS3: 8.1

nvd

около 1 года назад

Grocy through 4.3.0 has no CSRF protection, as demonstrated by changing the Administrator's password.

EPSS

Процентиль: 6%

0.00025

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-352