Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2021-41260
HistoryDec 16, 2021 - 6:15 p.m.

CVE-2021-41260

2021-12-1618:15:08
Google
osv.dev
6
galette
membership management
cross site request forgery
upgrade
non profit
gplv3
security issue

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

41.6%

JSON

Galette is a membership management web application built for non profit organizations and released under GPLv3. Versions prior to 0.9.6 do not check for Cross Site Request Forgery attacks. All users are advised to upgrade to 0.9.6 as soon as possible. There are no known workarounds for this issue.

Related

cvelist 1
cve 1
nvd 1
prion 1
ubuntucve 1
cnvd 1
cvelist
cvelist
CVE-2021-41260 Missing CSRF checks in Galette
2021-12-16 18:10:11
cve
cve
CVE-2021-41260
2021-12-16 18:15:08
nvd
nvd
CVE-2021-41260
2021-12-16 18:15:08
prion
prion
Cross site request forgery (csrf)
2021-12-16 18:15:00
ubuntucve
ubuntucve
CVE-2021-41260
2021-12-16 00:00:00
cnvd
cnvd
Galette Cross-Site Request Forgery Vulnerability
2021-12-17 00:00:00

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

41.6%

JSON
Related for OSV:CVE-2021-41260
cvelist1cve1nvd1prion1ubuntucve1cnvd1