Cross site request forgery (csrf)

2022-01-2000:15:00

PRIOn knowledge base

www.prio-n.com

4.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.1%

JSON

In mblog <= 3.5.0 there is a CSRF vulnerability in the background article management. The attacker constructs a CSRF load. Once the administrator clicks a malicious link, the article will be deleted.

CPENameOperatorVersion
mblogle3.5.0

CPE	Name	Operator	Version
	mblog	le	3.5.0

References

github.com/langhsu/mblog/issues/50