Описание
Pajbot is a Twitch chat bot. Pajbot versions prior to 1.52 are vulnerable to cross-site request forgery (CSRF). Hosters of the bot should upgrade to v1.52 or stable to install the patch or, as a workaround, can add one modern dependency.
Ссылки
- ExploitThird Party Advisory
- Third Party Advisory
- PatchThird Party Advisory
- ExploitThird Party Advisory
- Third Party Advisory
- PatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.52 (исключая)
cpe:2.3:a:pajbot:pajbot:*:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00148
Низкий
2.4 Low
CVSS3
4.3 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-352
CWE-352
EPSS
Процентиль: 36%
0.00148
Низкий
2.4 Low
CVSS3
4.3 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-352
CWE-352