3 matches found
CVE-2022-0515
Cross-Site Request Forgery CSRF in GitHub repository crater-invoice/crater prior to 6.0.4...
CVE-2022-0515 Cross-Site Request Forgery (CSRF) in crater-invoice/crater
Cross-Site Request Forgery CSRF in GitHub repository crater-invoice/crater prior to 6.0.4...
CVE-2022-0515
CVE-2022-0515 is a CSRF vulnerability in crater-invoice/crater prior to version 6.0.4. The issue affects the web application’s CSRF protection, enabling an attacker to cause a logged-in user to be logged out by visiting a malicious site (PoC shows triggering a logout). The condition is that the v...