Lucene search
PRIOn knowledge basePRION:CVE-2020-12480HistoryAug 17, 2020 - 9:15 p.m.
Cross site request forgery (csrf)
2020-08-1721:15:00
PRIOn knowledge base
www.prio-n.com
1
0.001 Low
EPSS
Percentile
21.6%
In Play Framework 2.6.0 through 2.8.1, the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can’t be parsed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| play_framework | ge | 2.8.0 | |
| play_framework | le | 2.8.1 | |
| play_framework | ge | 2.7.0 | |
| play_framework | le | 2.7.4 | |
| play_framework | ge | 2.6.0 | |
| play_framework | le | 2.6.25 |
Related
osv
osv
CSRF in Play Framework
2020-08-18 17:30:25
CVE-2020-12480
2020-08-17 21:15:00
veracode
veracode
Cross-Site Request Forgery (CSRF)
2020-08-20 02:23:11
cvelist
cvelist
CVE-2020-12480
2020-08-17 20:45:28
github
github
CSRF in Play Framework
2020-08-18 17:30:25
cve
cve
CVE-2020-12480
2020-08-17 21:15:11
nvd
nvd
CVE-2020-12480
2020-08-17 21:15:11