Lucene search
MitreCVELIST:CVE-2023-45857HistoryNov 08, 2023 - 12:00 a.m.
CVE-2023-45857
2023-11-0800:00:00
mitre
www.cve.org
axios
xsrf-token
cookies
http header
security issue
information disclosure
An issue discovered in Axios 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the HTTP header X-XSRF-TOKEN for every request made to any host allowing attackers to view sensitive information.
References
Related
ibm
ibm
Security Bulletin: axios-1.5.0.tgz and axios-1.5.1.tgz is vulnerable to CVE-2023-45857 used in IBM Maximo Application Suite - Edge Data Collector
2024-03-05 09:15:21
ubuntucve
ubuntucve
CVE-2023-45857
2023-11-08 00:00:00
veracode
veracode
Cross-Site Request Forgery
2023-11-09 07:07:08
prion
prion
Design/Logic Flaw
2023-11-08 21:15:00
githubexploit
githubexploit
Exploit for CVE-2023-45857
2023-10-18 12:19:34
Exploit for Cross-Site Request Forgery (CSRF) in Axios
2023-10-26 04:18:03
Exploit for Cross-Site Request Forgery (CSRF) in Axios
2023-11-24 22:42:56
cve
cve
CVE-2023-45857
2023-11-08 21:15:08
cgr
cgr
CVE-2023-45857 vulnerabilities
2024-05-19 03:07:16
osv
osv
Axios Cross-Site Request Forgery Vulnerability
2023-11-08 21:30:37
CVE-2023-45857
2023-11-08 21:15:08
nvd
nvd
CVE-2023-45857
2023-11-08 21:15:08
redhatcve
redhatcve
CVE-2023-45857
2023-11-10 00:17:17
github
github
Axios Cross-Site Request Forgery Vulnerability
2023-11-08 21:30:37
debiancve
debiancve
CVE-2023-45857
2023-11-08 21:15:08
wolfi
wolfi
CVE-2023-45857 vulnerabilities
2024-06-15 21:08:13
nessus
nessus
redhat
redhat