Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-FGJH-X3F8-8GMH
HistoryMay 24, 2022 - 4:50 p.m.

Mirumee Saleor CSRF Protection Disabled

2022-05-2416:50:13
Google
osv.dev
6
mirumee saleor
2.7.0
csrf protection

EPSS

0.001

Percentile

31.5%

JSON

In Mirumee Saleor 2.7.0 (fixed in 2.8.0), CSRF protection middleware was accidentally disabled, which allowed attackers to send a POST request without a valid CSRF token and be accepted by the server.

Related

prion 1
github 1
cve 1
nvd 1
cvelist 1
osv 1
prion
prion
Cross site request forgery (csrf)
2019-07-14 17:15:00
github
github
Mirumee Saleor CSRF Protection Disabled
2022-05-24 16:50:13
cve
cve
CVE-2019-13594
2019-07-14 17:15:11
nvd
nvd
CVE-2019-13594
2019-07-14 17:15:11
cvelist
cvelist
CVE-2019-13594
2019-07-14 16:19:21
osv
osv
CVE-2019-13594
2019-07-14 17:15:11

EPSS

0.001

Percentile

31.5%

JSON
Related for OSV:GHSA-FGJH-X3F8-8GMH
prion1github1cve1nvd1cvelist1osv1