3 matches found
CVE-2021-4005
firefly-iii is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-4005
firefly-iii is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-4005
CVE-2021-4005 affects the Firefly-III project and is a Cross-Site Request Forgery (CSRF) vulnerability. Multiple connected records (OSV, GHSA, Red Hat, CNVD, CNVD-CNVD, CNVD-202112-206) describe firefly-iii as vulnerable to CSRF; OSV notes that the CSRF could disable two-factor authentication for...