Cross-Site Request Forgery (CSRF) Protection Bypass Vulnerability in CodeIgniter4

🗓️ 01 Mar 2022 21:28:47Reported by GitHub Advisory DatabaseType

Cross-Site Request Forgery Protection Bypass in CodeIgniter4 v4.1.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 11
Veracode	Cross-Site Request Forgery (CSRF)	1 Mar 202207:34	–	veracode
OSV	GHSA-4V37-24GM-H554 Cross-Site Request Forgery (CSRF) Protection Bypass Vulnerability in CodeIgniter4	1 Mar 202221:47	–	osv
OSV	CVE-2022-24712	28 Feb 202216:15	–	osv
OSV	BIT-CODEIGNITER-2022-24712	6 Mar 202410:53	–	osv
Vulnrichment	CVE-2022-24712 Cross-Site Request Forgery (CSRF) Protection Bypass Vulnerability in CodeIgniter4	28 Feb 202216:00	–	vulnrichment
Cvelist	CVE-2022-24712 Cross-Site Request Forgery (CSRF) Protection Bypass Vulnerability in CodeIgniter4	28 Feb 202216:00	–	cvelist
CVE	CVE-2022-24712	28 Feb 202216:15	–	cve
RedhatCVE	CVE-2022-24712	23 May 202501:08	–	redhatcve
NVD	CVE-2022-24712	28 Feb 202216:15	–	nvd
Prion	Cross site request forgery (csrf)	28 Feb 202216:15	–	prion

Vulners

Node

codeigniter4 frameworkRange<4.1.9

Source	Link
github	www.github.com/codeigniter4/CodeIgniter4/security/advisories/GHSA-4v37-24gm-h554
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-24712
github	www.github.com/codeigniter4/CodeIgniter4/blob/7dc2ece32401ebde67122f7d2460efcaee7c352e/user_guide_src/source/changelogs/v4.1.9.rst
github	www.github.com/advisories/GHSA-4v37-24gm-h554

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Mar 2022 21:47Current

0.7Low risk

Vulners AI Score0.7

CVSS26.8

CVSS36.3 - 8.8

EPSS0.00131

SSVC

CWE-352