exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2024-5712

больше 1 года назад

A Cross-Site Request Forgery (CSRF) vulnerability was identified in the stitionai/devika application, affecting the latest version. This vulnerability allows attackers to perform unauthorized actions in the context of a victim's browser, such as deleting projects or changing application settings, without any CSRF protection implemented. Successful exploitation disrupts the integrity and availability of the application and its data.

CVSS3: 8.1

EPSS: Низкий

GHSA-9jx9-wmp4-vw8m

больше 1 года назад

Cross-Site Request Forgery (CSRF) in stitionai/devika

CVSS3: 8.1

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2024-5712 A Cross-Site Request Forgery (CSRF) vulnerability was identified in the stitionai/devika application, affecting the latest version. This vulnerability allows attackers to perform unauthorized actions in the context of a victim's browser, such as deleting projects or changing application settings, without any CSRF protection implemented. Successful exploitation disrupts the integrity and availability of the application and its data.	CVSS3: 8.1	0% Низкий	больше 1 года назад
	GHSA-9jx9-wmp4-vw8m Cross-Site Request Forgery (CSRF) in stitionai/devika	CVSS3: 8.1	0% Низкий	больше 1 года назад

Уязвимостей на страницу