Описание
A vulnerability was found that the 3scale dev portal does not employ mechanisms for protection against login CSRF. An attacker could use this flaw to access unauthorized information or conduct further attacks.
It was found that the 3scale dev portal does not employ mechanisms for protection against login CSRF. An attacker could use this flaw to access unauthorized information or conduct further attacks.
Дополнительная информация
Статус:
5.4 Medium
CVSS3
Связанные уязвимости
A vulnerability was found that the 3scale dev portal does not employ mechanisms for protection against login CSRF. An attacker could use this flaw to access unauthorized information or conduct further attacks.
3scale dev portal login form does not verify CSRF token, and so does not protect against login CSRF.
5.4 Medium
CVSS3