Lucene search
@huntrdevCVELIST:CVE-2023-0735HistoryFeb 07, 2023 - 12:00 a.m.
CVE-2023-0735 Cross-Site Request Forgery (CSRF) in wallabag/wallabag
2023-02-0700:00:00
CWE-352
@huntrdev
www.cve.org
cve-2023-0735
cross-site request forgery
github repository
wallabag
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
25.9%
Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag prior to 2.5.4.
CNA Affected
[
{
"vendor": "wallabag",
"product": "wallabag/wallabag",
"versions": [
{
"version": "unspecified",
"lessThan": "2.5.4",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
osv
osv
Cross-Site Request Forgery (CSRF) in wallabag/wallabag
2023-02-08 00:30:34
CVE-2023-0735
2023-02-07 23:15:09
cve
cve
CVE-2023-0735
2023-02-07 23:15:09
github
github
Cross-Site Request Forgery (CSRF) in wallabag/wallabag
2023-02-08 00:30:34
veracode
veracode
Cross-Site Request Forgery (CSRF)
2023-02-13 05:55:46
nvd
nvd
CVE-2023-0735
2023-02-07 23:15:09
huntr
huntr
GET based CSRF on delete user functionality
2023-02-04 18:14:41
prion
prion
Cross site request forgery (csrf)
2023-02-07 23:15:00
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
25.9%
Related for CVELIST:CVE-2023-0735