6.9 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
31.1%
In OWASP CSRFGuard through 3.1.0, CSRF can occur because the CSRF cookie may be retrieved by using only a session token.
github.com/reidmefirst/vuln-disclosure/blob/main/2021-01.txt
owasp.org/www-project-csrfguard/