2 matches found
CVE-2022-35196
TestLink v1.9.20 was discovered to contain a Cross-Site Request Forgery CSRF via /lib/plan/planView.php...
CVE-2022-35196
CVE-2022-35196 affects TestLink v1.9.20 and is a Cross-Site Request Forgery (CSRF) vulnerability exploitable via the /lib/plan/planView.php endpoint. The incident has a high impact (C/H/I/A) per CVSS 3.1 (8.8) with network attack vector, no privileges required, user interaction required. The conn...