Lucene search
K

4 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-1177

Malware in sbrugna...

6.5CVSS6.3AI score0.00829EPSS
Exploits0References8
Veracode
Veracode
added 2023/04/24 10:15 a.m.16 views

Cross-site Request Forgery (CSRF)

@fastify/csrf-protection is vulnerable to Cross-site Request Forgery CSRF. An attackers is able to bypass the CSRF protection mechanism by fixing a csrf cookie in the victim's browser and forging valid CSRF tokens that are valid for the victim's session...

6.5CVSS6.4AI score0.00829EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2023/04/21 11:15 p.m.15 views

Cross site request forgery (csrf)

@fastify/passport is a port of passport authentication library for the Fastify ecosystem. The CSRF Cross-Site Request Forger protection enforced by the @fastify/csrf-protection library, when combined with @fastify/passport in affected versions, can be bypassed by network and same-site attackers...

4.3CVSS6.5AI score0.00384EPSS
Exploits0References4Affected Software1
vulnersOsv
vulnersOsv
added 2023/04/20 9:18 p.m.7 views

@flowforge/flowforge (>=0.9.0 <=0.10.0), schwing (>=0.2.14 <=0.2.26) potentially affected by CVE-2021-29624 +1 more via @fastify/csrf-protection (=5.1.0)

@fastify/csrf-protection NPM version =5.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on @fastify/csrf-protection and may be impacted: - @flowforge/flowforge =0.9.0, =0.2.14, =0.2.26 Source cves: CVE-2021-29624, CVE-2023-27495 Source advisory:...

6.5CVSS6.5AI score0.00829EPSS
Exploits0
Rows per page
Query Builder