Описание
Cross-site request forgery vulnerability exists in Activity Log WinterLock versions prior to 1.2.5. If a user views a malicious page while logged in, the log data may be deleted.
EPSS
Процентиль: 15%
0.00047
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 4.3
github
около 1 года назад
Cross-site request forgery vulnerability exists in Activity Log WinterLock versions prior to 1.2.5. If a user views a malicious page while logged in, the log data may be deleted.
EPSS
Процентиль: 15%
0.00047
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-352