3 matches found
CVE-2021-47157
The Kossy module before 0.60 for Perl allows JSON hijacking because of X-Requested-With mishandling...
CVE-2021-47157
The Kossy module before 0.60 for Perl allows JSON hijacking because of X-Requested-With mishandling...
CVE-2021-47157
The CVE-2021-47157 entry affects the Kossy Perl module before 0.60. The root cause is mishandling of the X-Requested-With header, enabling JSON hijacking and compromising confidentiality, integrity, and availability (CVSS v3.1: 9.8, critical; AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Affected softwar...