Lucene search

K
osvGoogleOSV:GHSA-556Q-H4VR-PGH2
HistoryMay 14, 2022 - 2:47 a.m.

CakePHP might allow remote attackers to bypass CSRF protection mechanism via the _method parameter

2022-05-1402:47:10
Google
osv.dev
65

0.032 Low

EPSS

Percentile

91.2%

CakePHP 2.x and 3.x before 3.1.5 might allow remote attackers to bypass the CSRF protection mechanism via the _method parameter.

0.032 Low

EPSS

Percentile

91.2%