Lucene search
MitreCVELIST:CVE-2023-47024HistoryJan 20, 2024 - 12:00 a.m.
CVE-2023-47024
2024-01-2000:00:00
mitre
www.cve.org
1
cross-site request forgery
ncr terminal handler
account takeover
wsdl
security controls
Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover. This is achieved by exploiting multiple vulnerabilities, including an undisclosed function in the WSDL that has weak security controls and can accept custom content types.
Related
cve
cve
CVE-2023-47024
2024-01-20 02:15:07
nvd
nvd
CVE-2023-47024
2024-01-20 02:15:07
prion
prion
Cross site request forgery (csrf)
2024-01-20 02:15:00